Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

SP 800-137

Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations

Date Published: September 2011

Author(s)

Kelley Dempsey (NIST), Nirali Chawla (PwC), L. Johnson (NIST), Ronald Johnston (DoD), Alicia Jones (BAH), Angela Orebaugh (BAH), Matthew Scholl (NIST), Kevin Stine (NIST)

Abstract

Keywords

Continuous monitoring; ISCM; information security; security; risk management
Control Families

Audit and Accountability; Security Assessment and Authorization; Configuration Management; Planning; Program Management; Risk Assessment;

Documentation

Publication:
SP 800-137 (DOI)
Local Download

Supplemental Material:
Press Release (other)

Related NIST Publications:
White Paper