[Global_industry_committee] Fwd: NIST SP 800-137 DRAFT Information Security Continuous Monitoring for Federal Information Systems and Organizations

Colin Watson colin.watson at owasp.org
Fri Dec 17 09:47:08 EST 2010


Mmmm i think I sent this to the wrong address first time,

Colin


---------- Forwarded message ----------
From: Colin Watson <colin.watson at owasp.org>
Date: 17 December 2010 14:28
Subject: NIST SP 800-137 DRAFT Information Security Continuous
Monitoring for Federal Information Systems and Organizations
To: owasp-global-industry-committee <owasp-global-industry-committee at owasp.org>


NIST have just published:

  SP 800-137
  DRAFT Information Security Continuous Monitoring for Federal
Information Systems and Organizations
  http://csrc.nist.gov/publications/PubsDrafts.html#800-137

It's a fairly high-level document (38 pages), but we might want to
make sure that application logging, application vulnerability
management and application IDS are adequately covered?  Some of the
OWASP leaders may have things to contribute.  Responses due by March
15th.

Shall we respond?

Regards

Colin Watson
Global Industry Committee
http://www.owasp.org/index.php/Global_Industry_Committee


More information about the Global_industry_committee mailing list