Ansible Tower - System and Information Integrity

Control responses for NIST 800-53 rev4.


Requirements Traceability Matrix

Control Name Status
SI-1 System And Information Integrity Policy And Procedures

not applicable

SI-2 Flaw Remediation

not applicable

SI-2 (1) Central Management
SI-2 (2) Automated Flaw Remediation Status
SI-2 (3) Time To Remediate Flaws / Benchmarks For Corrective Actions
SI-2 (4) Automated Patch Management Tools
SI-2 (5) Automatic Software / Firmware Updates
SI-2 (6) Removal Of Previous Versions Of Software / Firmware
SI-3 Malicious Code Protection

not applicable

SI-3 (1) Central Management
SI-3 (2) Automatic Updates
SI-3 (3) Non-Privileged Users
SI-3 (4) Updates Only By Privileged Users
SI-3 (5) Portable Storage Devices
SI-3 (6) Testing / Verification
SI-3 (7) Nonsignature-Based Detection
SI-3 (8) Detect Unauthorized Commands
SI-3 (9) Authenticate Remote Commands
SI-3 (10) Malicious Code Analysis
SI-4 Information System Monitoring

not applicable

SI-4 (1) System-Wide Intrusion Detection System
SI-4 (2) Automated Tools For Real-Time Analysis
SI-4 (3) Automated Tool Integration
SI-4 (4) Inbound And Outbound Communications Traffic
SI-4 (5) System-Generated Alerts
SI-4 (6) Restrict Non-Privileged Users
SI-4 (7) Automated Response To Suspicious Events
SI-4 (8) Protection Of Monitoring Information
SI-4 (9) Testing Of Monitoring Tools
SI-4 (10) Visibility Of Encrypted Communications
SI-4 (11) Analyze Communications Traffic Anomalies
SI-4 (12) Automated Alerts
SI-4 (13) Analyze Traffic / Event Patterns
SI-4 (14) Wireless Intrusion Detection
SI-4 (15) Wireless To Wireline Communications
SI-4 (16) Correlate Monitoring Information
SI-4 (17) Integrated Situational Awareness
SI-4 (18) Analyze Traffic / Covert Exfiltration
SI-4 (19) Individuals Posing Greater Risk
SI-4 (20) Privileged Users
SI-4 (21) Probationary Periods
SI-4 (22) Unauthorized Network Services
SI-4 (23) Host-Based Devices
SI-4 (24) Indicators Of Compromise
SI-5 Security Alerts, Advisories, And Directives

not applicable

SI-5 (1) Automated Alerts And Advisories
SI-6 Security Function Verification
SI-6 (1) Notification Of Failed Security Tests
SI-6 (2) Automation Support For Distributed Testing
SI-6 (3) Report Verification Results
SI-7 Software, Firmware, And Information Integrity
SI-7 (1) Integrity Checks
SI-7 (2) Automated Notifications Of Integrity Violations
SI-7 (3) Centrally-Managed Integrity Tools
SI-7 (4) Tamper-Evident Packaging
SI-7 (5) Automated Response To Integrity Violations
SI-7 (6) Cryptographic Protection
SI-7 (7) Integration Of Detection And Response
SI-7 (8) Auditing Capability For Significant Events
SI-7 (9) Verify Boot Process
SI-7 (10) Protection Of Boot Firmware