N
|
controlSA-24

Design For Cyber Resiliency (SA-24)

Design organizational systems, system components, or system services to achieve cyber resiliency by: Implement the selected cyber resiliency goals, objectives, techniques, implementation approaches, and design principles as part of an organizational risk management process or systems security engineering process.

acquisitionsdlcservicessupply-chain

Why These Connect

Supports65

These related controls work together — a change to one may affect the others.

Related Controls(65)

CA-7Continuous Monitoring (CA-7)
LMH
CP-2Contingency Plan (CP-2)
LMH
CP-4Contingency Plan Testing (CP-4)
LMH
CP-9System Backup (CP-9)
LMH
CP-10System Recovery and Reconstitution (CP-10)
LMH
CP-11Alternate Communications Protocols (CP-11)CP-12Safe Mode (CP-12)CP-13Alternative Security Mechanisms (CP-13)IA-10Adaptive Authentication (IA-10)IR-4Incident Handling (IR-4)
LMH
IR-5Incident Monitoring (IR-5)
LMH
PE-11Emergency Power (PE-11)
MH
PE-17Alternate Work Site (PE-17)
MH
PL-8Security and Privacy Architectures (PL-8)
MH
PM-7Enterprise Architecture (PM-7)PM-16Threat Awareness Program (PM-16)PM-30Supply Chain Risk Management Strategy (PM-30)PM-31Continuous Monitoring Strategy (PM-31)RA-3Risk Assessment (RA-3)
LMH
RA-5Vulnerability Monitoring and Scanning (RA-5)
LMH
RA-9Criticality Analysis (RA-9)
MH
RA-10Threat Hunting (RA-10)SA-3System Development Life Cycle (SA-3)
LMH
SA-8Security and Privacy Engineering Principles (SA-8)
LMH
SA-9External System Services (SA-9)
LMH
SA-17Developer Security and Privacy Architecture and Design (SA-17)
H
SC-3Security Function Isolation (SC-3)
H
SC-5Denial-of-service Protection (SC-5)
LMH
SC-7Boundary Protection (SC-7)
LMH
SC-10Network Disconnect (SC-10)
MH
SC-11Trusted Path (SC-11)SC-29Heterogeneity (SC-29)SC-30Concealment and Misdirection (SC-30)SC-34Non-modifiable Executable Programs (SC-34)SC-35External Malicious Code Identification (SC-35)SC-36Distributed Processing and Storage (SC-36)SC-37Out-of-band Channels (SC-37)SC-39Process Isolation (SC-39)
LMH
SC-44Detonation Chambers (SC-44)SC-47Alternate Communications Paths (SC-47)SC-48Sensor Relocation (SC-48)SC-49Hardware-enforced Separation and Policy Enforcement (SC-49)SC-50Software-enforced Separation and Policy Enforcement (SC-50)SC-51Hardware-based Protection (SC-51)SI-3Malicious Code Protection (SI-3)
LMH
SI-4System Monitoring (SI-4)
LMH
SI-6Security and Privacy Function Verification (SI-6)
H
SI-7Software, Firmware, and Information Integrity (SI-7)
MH
SI-10Information Input Validation (SI-10)
MH
SI-14Non-persistence (SI-14)SI-15Information Output Filtering (SI-15)SI-16Memory Protection (SI-16)
MH
SI-19De-identification (SI-19)SI-20Tainting (SI-20)SI-21Information Refresh (SI-21)SI-22Information Diversity (SI-22)SI-23Information Fragmentation (SI-23)SR-3Supply Chain Controls and Processes (SR-3)
LMH
SR-4Provenance (SR-4)SR-5Acquisition Strategies, Tools, and Methods (SR-5)
LMH
SR-6Supplier Assessments and Reviews (SR-6)
MH
SR-7Supply Chain Operations Security (SR-7)SR-9Tamper Resistance and Detection (SR-9)
H
SR-10Inspection of Systems or Components (SR-10)
LMH
SR-11Component Authenticity (SR-11)
LMH

See Also

@SP 800-53 OverviewCompare Baselines