7.6: Perform Automated Vulnerability Scans of Externally-Exposed Enterprise Assets

CSF v1.1 References:

ID.RA-5
PR.IP-12

PF v1.0 References:

ID.RA-P4
PR.PO-P10

Threats Addressed:

Elevation of Privilege

Group:

Incorporates the following controls from the previous version: 3.1: Run Automated Vulnerability Scanning Tools, 9.3: Perform Regular Automated Port Scans, 12.2: Scan for Unauthorized Connections Across Trusted Network Boundaries.

Control Statement

Perform automated vulnerability scans of externally-exposed enterprise assets using a SCAP-compliant vulnerability scanning tool. Perform scans on a monthly, or more frequent, basis.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-171 Revision 2

NIST Special Publication 800-53 Revision 4