PR.PS-01 establishes and applies configuration management practices to maintain secure baselines for hardware, software, and services, adhering to the principle of least functionality. This involves testing and deploying hardened configurations while reviewing defaults for potential risks during installations or upgrades. It ensures platforms are set up to minimize vulnerabilities.This subcategory enhances security by monitoring systems for deviations from approved baselines, enabling quick correction of misconfigurations. It aligns configurations with organizational risk strategies, reducing the attack surface. PR.PS-01 provides a structured approach to platform security.

Ver todos los episodios