CM-6(2): Respond to Unauthorized Changes

Control Family:

Configuration Management

Parent Control:

CM-6: Configuration Settings

CSF v1.1 References:

PR.IP-1

Baselines:

High

Previous Version:

NIST Special Publication 800-53 Revision 4:
CM-6(2): Respond To Unauthorized Changes

Control Statement

Take the following actions in response to unauthorized changes to [Assignment: organization-defined configuration settings]: [Assignment: organization-defined actions].

Supplemental Guidance

Responses to unauthorized changes to configuration settings include alerting designated organizational personnel, restoring established configuration settings, or-in extreme cases-halting affected system processing.

Control Statement

Supplemental Guidance

Related Controls

NIST Special Publication 800-53 Revision 5