Compliance Reports: National Industrial Security Program Operating Manual (NISPOM)

Document created by RSA Information Design and Development on May 25, 2016Last modified by RSA Information Design and Development on Jun 18, 2018
Version 152Show Document
  • View in full screen mode
 

The National Industrial Security Program Operating Manual (NISPOM) developed by the Department of Defense, sets comprehensive standards for protecting classified data. All government agencies and commercial contractors who have access to classified data are required to implement system protection processes to ensure continued availability and integrity of this data, and prevent its unauthorized disclosure. These regulations apply to systems used in the capture, creation, storage, processing, or distribution of restricted information.

Dependencies

The NISPOM compliance reports have the following dependencies.

               
SA RulesApp Rules

Accounts Deleted

Password Changes

Password Changes Summary

Admin Access to Compliance Systems Details

Admin Access to Compliance Systems Summary

User Access to Compliance Systems Details

User Access to Compliance Systems Summary

Logon Failures Details

Logon Failures Summary

Firewall Configuration Changes

Router Configuration Changes

Encryption Failures

Encryption Key Generation and Changes

account:deleted

account:password-change

account:logon-failure

encryption:failures

encryption:key-gen-and-changes

config:fw-config-changes

config:router-change

account:logon-success

Citations

The NISPOM reports have the following Citations.

                                                                         
Report RuleCitation NumberCitation Description
Accounts DeletedNISPOM 8-303fUser ID Removal
Password Changes - Detail
Password Changes - Top 25
NISPOM 8-303i(2)Protection of Individual Passwords
Firewall Configuration ChangesNISPOM 8-311Configuration Management
Router Configuration ChangesNISPOM 8-311Configuration Management
User Access to Compliance Systems - DetailNISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
User Access to Compliance Systems - Top 25NISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Logon Failures - DetailNISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Logon Failures - Top 25NISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Admin Access to Compliance Systems - DetailNISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Admin Access to Compliance Systems - Top 25NISPOM 8-806a(1b)Audit 1 Requirements; Successful and unsuccessful logons and logoffs
Encryption FailuresNISPOM 8-605Data Transmission (Trans)
Key Generation and ChangesNISPOM 8-605Data Transmission (Trans)
You are here
Table of Contents > Compliance Reports: National Industrial Security Program Operating Manual (NISPOM)

Attachments

    Outcomes