Control statement
(a) Review the system {{ insert: param, cm-07.01_odp.01 }} to identify unnecessary and/or nonsecure functions, ports, protocols, software, and services; and
(b) Disable or remove {{ insert: param, cm-7.1_prm_2 }}. Parameter placeholders {{ insert: param, … }} reference FedRAMP-set values in the resolved profile. Full parameter map is
preserved in the catalog database.
Covered by these Key Security Indicators
| KSI | Title | Category |
|---|---|---|
| KSI-AFR-05 | Significant Change Notifications Determine how significant changes will be tracked and how all necessary parties will be notified in alignment with the FedRAMP Significant Change Notifications (SCN) process and persistently address all related requirements and recommendations. | Authorization by FedRAMP |
| KSI-CMT-04 | Change Management Procedures _Persistently_ review the effectiveness of documented change management procedures. | Change Management |
| KSI-CNA-01 | Restrict Network Traffic _Persistently_ ensure all _machine-based_ _information resources_ are configured to limit inbound and outbound network traffic. | Cloud Native Architecture |
| KSI-SVC-01 | Continuous Improvement Implement improvements based on persistent evaluation of information resources for opportunities to improve security. | Service Configuration |
| KSI-SVC-04 | Configuration Automation Manage configuration of machine-based information resources using automation. | Service Configuration |