| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1157 - Plan Of Action And Milestones | ||
| Id | 15495367-cf68-464c-bbc3-f53ca5227b7a | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Security Assessment and Authorization control | ||
| Additional metadata |
Name/Id: ACF1157 / Microsoft Managed Control 1157 Category: Security Assessment and Authorization Title: Plan of Action And Milestones - Updating Ownership: Customer, Microsoft Description: The organization: Updates existing plan of action and milestones Monthly based on the findings from security controls assessments, security impact analyses, and continuous monitoring activities. Requirements: Azure updates the POA&M report on at least a monthly basis based on the findings of the security control assessments and ongoing continuous monitoring activities, including vulnerability scanning. Microsoft includes an action step to remediate any items from ongoing assessments and vulnerability scans (if any) consistent with the vulnerability management process in the monthly POA&M submission. Microsoft provides a high-level description of the issue and the remediation plan. The raw scan reports contain details on any issues noted and is made available to the authorizing officials monthly. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|