Compliance Reports: National Industrial Security Program Operating Manual (NISPOM)

Document created by RSA Information Design and Development on May 25, 2016•Last modified by RSA Information Design and Development on Apr 25, 2018

Version 144Show Document

Like • Show 0 Likes0
Comment • 0
View in full screen mode

The National Industrial Security Program Operating Manual (NISPOM) developed by the Department of Defense, sets comprehensive standards for protecting classified data. All government agencies and commercial contractors who have access to classified data are required to implement system protection processes to ensure continued availability and integrity of this data, and prevent its unauthorized disclosure. These regulations apply to systems used in the capture, creation, storage, processing, or distribution of restricted information.

Dependencies

The NISPOM compliance reports have the following dependencies.

SA Rules	App Rules
Accounts Deleted Password Changes Password Changes Summary Admin Access to Compliance Systems Details Admin Access to Compliance Systems Summary User Access to Compliance Systems Details User Access to Compliance Systems Summary Logon Failures Details Logon Failures Summary Firewall Configuration Changes Router Configuration Changes Encryption Failures Encryption Key Generation and Changes	account:deleted account:password-change account:logon-failure encryption:failures encryption:key-gen-and-changes config:fw-config-changes config:router-change account:logon-success

SA Rules

App Rules

Accounts Deleted

Password Changes

Password Changes Summary

Admin Access to Compliance Systems Details

Admin Access to Compliance Systems Summary

User Access to Compliance Systems Details

User Access to Compliance Systems Summary

Logon Failures Details

Logon Failures Summary

Firewall Configuration Changes

Router Configuration Changes

Encryption Failures

Encryption Key Generation and Changes

account:deleted

account:password-change

account:logon-failure

encryption:failures

encryption:key-gen-and-changes

config:fw-config-changes

config:router-change

account:logon-success

Citations

The NISPOM reports have the following Citations.

Report Rule	Citation Number	Citation Description
Accounts Deleted	NISPOM 8-303f	User ID Removal
Password Changes - Detail Password Changes - Top 25	NISPOM 8-303i(2)	Protection of Individual Passwords
Firewall Configuration Changes	NISPOM 8-311	Configuration Management
Router Configuration Changes	NISPOM 8-311	Configuration Management
User Access to Compliance Systems - Detail	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
User Access to Compliance Systems - Top 25	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Logon Failures - Detail	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Logon Failures - Top 25	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Admin Access to Compliance Systems - Detail	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Admin Access to Compliance Systems - Top 25	NISPOM 8-806a(1b)	Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Encryption Failures	NISPOM 8-605	Data Transmission (Trans)
Key Generation and Changes	NISPOM 8-605	Data Transmission (Trans)

Previous Topic:North American Electric Reliability Corporation – Critical Infrastructure Protection (NERC CIP)

Next Topic:Payment Card Industry (PCI)

You are here

Table of Contents > Rules and Reports > Core Compliance Reports > National Industrial Security Program Operating Manual (NISPOM)

Compliance Reports: National Industrial Security Program Operating Manual (NISPOM)

Dependencies

Citations

Attachments

Outcomes

Related Content

Recommended Content

Incoming Links