Continuous Security Monitoring
Continuous security monitoring is maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions
- NIST SP 800-137 provides a framework for continuous security monitoring
NIST SP 800-137 Framework
- Continuous monitoring
- Maps to risk tolerance
- Adapts to ongoing needs
- Actively involves management
- Process
- Define
- Establish
- Implement
- Analyze/Report
- Respond
- Review/Update