AzPolicyAdvertizer

last sync: 2024-Nov-25 18:54:24 UTC

Implement security testing, training, and monitoring plans | Regulatory Compliance - Documentation

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Implement security testing, training, and monitoring plans

21832235-7a07-61f4-530d-d596f76e5b95

Version

1.1.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]

Category

Regulatory Compliance
Microsoft Learn

Description

CMA_C1753 - Implement security testing, training, and monitoring plans

Additional metadata

Name/Id: CMA_C1753 / CMA_C1753
Category: Documentation
Title: Implement security testing, training, and monitoring plans
Ownership: Customer
Description: The customer is responsible for implementing a process for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational information systems: 1. Are developed and maintained; and 2. Continue to be executed in a timely manner.
Requirements: The customer is responsible for implementing this recommendation.

Mode

All

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Manual
Allowed
Manual, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (1)
Microsoft.Resources/subscriptions

Compliance

The following 1 compliance controls are associated with this Policy definition 'Implement security testing, training, and monitoring plans' (21832235-7a07-61f4-530d-d596f76e5b95)

Control Domain	Control	Name	MetadataId	Category	Title	Owner	Requirements	Description	Info	Policy#
hipaa	0108.02d1Organizational.23-02.d	hipaa-0108.02d1Organizational.23-02.d	0108.02d1Organizational.23-02.d	01 Information Protection Program	0108.02d1Organizational.23-02.d 02.03 During Employment	Shared	n/a	The organization ensures plans for security testing, training, and monitoring activities are developed, implemented, maintained, and reviewed for consistency with the risk management strategy and response priorities.		8

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
HITRUST/HIPAA	a169a624-5599-4385-a696-c8d643089fab	Regulatory Compliance	GA	BuiltIn

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-09-27 16:35:32	change	Minor (1.0.0 > 1.1.0)
2022-09-19 17:41:40	add	21832235-7a07-61f4-530d-d596f76e5b95

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC