Traditional Security Checklist
Rules, Groups, and Values defined within the XCCDF Benchmark
-
PH-09.03.01
<GroupDescription></GroupDescription>Group -
Physical Penetration Testing - of Facilities or Buildings Containing Information Systems (IS) Connected to the DISN
<VulnDiscussion>Failure to periodically test facility/building security where Information Systems (IS) connected to the DISN are present coul...Rule Low Severity -
SM-01.03.01
<GroupDescription></GroupDescription>Group -
Security and Cybersecurity Staff Appointment, Training/Certification and Suitability
<VulnDiscussion>Failure to formally appoint security personnel and detail responsibilities, training and other requirements in the appointmen...Rule Medium Severity -
SM-02.02.01
<GroupDescription></GroupDescription>Group -
Security Training - Information Security (INFOSEC) for ALL Employees; Military, Government Civilian and Contractor
<VulnDiscussion>Failure to provide security training to ALL employees results in a weak security program and could lead to the loss or compro...Rule Medium Severity -
SM-03.03.01
<GroupDescription></GroupDescription>Group -
Counter-Intelligence Program - Training, Procedures and Incident Reporting
<VulnDiscussion>Failure to establish a good working relationship with the supporting/local CI agency and lack of proper CI training for site/...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules