Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

NISTIR 7800 (Draft)

Applying the Continuous Monitoring Technical Reference Model to the Asset, Configuration, and Vulnerability Management Domains

Date Published: January 2012
Comments Due: February 17, 2012 (public comment period is CLOSED)
Email Questions to:


David Waltermire (NIST), Adam Halbardier, Adam Humenansky, Peter Mell (NIST)



continuous monitoring; vulnerability management
Control Families

Audit and Accountability; Security Assessment and Authorization; Configuration Management; Incident Response; Maintenance; Risk Assessment; System and Communications Protection


Draft NISTIR 7800

Supplemental Material:
None available

Related NIST Publications:
NISTIR 7756 (Draft)
NISTIR 7799 (Draft)

Document History:
01/20/12: NISTIR 7800 (Draft)