CA-2 Security Assessments

Rule Id	Frequency	Responsible
CA0200	Quarterly	ISSM
EXAMINE:REVIEW: the each security control family to ensure self-assessments are documented, up to date. EXAMINE:REVIEW: assessment procedures to ensure the method is sufficient to ensure control effectiveness.
ARTIFACTS Cybersecurity Compliance Checklist with compiled documented results of vulnerability analysis based on Information System Continuous Monitoring (ISCM) program; Self-assessment attestation within the log of continuous monitoring activities on-site.

Rule Id

Frequency

Responsible

CA0200

Quarterly

ISSM

EXAMINE:REVIEW: the each security control family to ensure self-assessments are documented, up to date.

EXAMINE:REVIEW: assessment procedures to ensure the method is sufficient to ensure control effectiveness.

ARTIFACTS
Cybersecurity Compliance Checklist with compiled documented results of vulnerability analysis based on Information System Continuous Monitoring (ISCM) program; Self-assessment attestation within the log of continuous monitoring activities on-site.