WEB-01: Web Security | Find Controls

WEB-01 · Web Security

Control Description

Mechanisms exist to facilitate the implementation of an enterprise-wide web management policy, as well as associated standards, controls and procedures.

Control Question

Assessment question for control validation

Does the organization facilitate the implementation of an enterprise-wide web management policy, as well as associated standards, controls and procedures?

Control Weighting

Validation Cadence

Annual

NIST CSF Function

Govern

Supply Chain Risk Management (SCRM) Tiers

Applicable SCRM tier levels for this control

Tier 1 - Strategic

Tier 2 - Operational

Tier 3 - Tactical

Core Control Designations

Special designations and baseline inclusions

MAD: WEB-01

ESP Level 2: WEB-01

ESP Level 3: WEB-01

Additional Metadata

Applicability (Process):

Errata & Additional Notes

- updated mapping NIST 800-171 R2 - updated mapping CMMC Level 1 - updated mapping CMMC Level 2