SI-2 (2)

System and Information IntegrityRev 5organization

Automated Flaw Remediation Status

Baselines:ModerateHigh

Control Statement

Determine if system components have applicable security-relevant software and firmware updates installed using [Assignment: automated mechanisms] [Assignment: frequency].

Supplemental Guidance

Automated mechanisms can track and determine the status of known flaws for system components.

Related Controls (2)

CA-7 SI-4

CCI Identifiers (8)

CCI-004958Defines a frequency for installing security-relevant firmware updates using organization-defined automated mechanisms.CCI-004959Defines the automated mechanisms for determining if system components have applicable security-related software updates installed.CCI-004960Defines the automated mechanisms for determining if system components have applicable security-related firmware updates installed.CCI-004955Determine if system components have applicable security-related software updates installed using organization-defined mechanisms on an organization-defined frequency.CCI-004956Determine if system components have applicable security-related firmware updates installed using organization-defined mechanisms on an organization-defined frequency.CCI-004957Defines a frequency for installing security-relevant software updates using organization-defined automated mechanisms.CCI-001233The organization employs automated mechanisms on an organization-defined frequency to determine the state of information system components with regard to flaw remediation.CCI-001234The organization defines a frequency for employing automated mechanisms to determine the state of information system components with regard to flaw remediation.

Linked STIG Checks (11)

Across 10 STIGs. Click to expand.