compliance

compliance copied to clipboard

Per Table H-3: Mapping ISO/IEC 27001 and 15408 to NIST SP 800-53 in Appendix H of [NIST SP 800-53 rev 4](http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf), the control narratives should be enhanced to reflect the...

anweiss

Guidance for DoD RMF per DODI 8510.1. Reference: http://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodi/851001_2014.pdf

anweiss

Document DFARS guidance for Docker EE systems processing CUI per 800-171 using applicable [NIST 800-53DFARS mappings](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-171r1.pdf) (Appendix D).

anweiss

Include [Control Correlation Identifier (CCI)](https://iase.disa.mil/stigs/cci/Pages/index.aspx) mappings

anweiss

Tracking development of GDPR guidance

anweiss

Update narratives as they pertain to Windows Server 2016

3

Include references to safeguards provided by Windows Server 2016 where appropriate

anweiss

Update component narratives to include least privilege information for CM-7

anweiss

Map remainder of controls to InSpec profiles for FedRAMP Moderate and High baselines

anweiss

Per DOD SRG, map L4 controls to NIST 800-53. Refer to https://iasecontent.disa.mil/cloud/SRG/index.html and https://iasecontent.disa.mil/cloud/SRG/index.html#_Tbl2. Depends on https://github.com/opencontrol/schemas/issues/48.

anweiss

Update sample SSP project to include parameters

anweiss