SEA-21 ยท Application Container

Control Description

Mechanisms exist to utilize an application container (virtualization approach) to isolate to a known set of dependencies, access methods and interfaces.

Control Question
Assessment question for control validation

Does the organization utilize an application container (virtualization approach) to isolate to a known set of dependencies, access methods and interfaces?

Control Weighting
5
Validation Cadence
Annual
NIST CSF Function
Protect
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Tier 3 - Tactical
Core Control Designations
Special designations and baseline inclusions
ESP Level 2: SEA-21
ESP Level 3: SEA-21