SI-3(1): Central Management

Control Family:

System And Information Integrity

Parent Control:

SI-3: Malicious Code Protection

Priority:

CSF v1.1 References:

Threats Addressed:

Baselines:

  • Moderate
  • High
Warning icon.

Control is withdrawn in the next version of this control set and incorporated into: PL-9: Central Management.

Control Statement

The organization centrally manages malicious code protection mechanisms.

Supplemental Guidance

Central management is the organization-wide management and implementation of malicious code protection mechanisms. Central management includes planning, implementing, assessing, authorizing, and monitoring the organization-defined, centrally managed flaw malicious code protection security controls.