Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock
()
or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Define the strategy and roadmap, including the policies and procedures that encompasses all necessary sources of risk data.
Implement a means based on the requirements defined within the strategy and ensure the policies and procedures are consistently implemented.
Define audit review, analysis, and reporting policies and procedures.
Implement the defined audit review, analysis, and reporting policies and procedures and ensure operational effectiveness and compliance.
Enhance undertakings to ensure they are applied in accordance with EXIM security effectively. If required, consistently document the business rationale or technical issues delaying the remediation of vulnerabilities within a POA&M.
Expand procedures accordingly.