STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must implement organization-defined automated security responses if baseline configurations are changed in an unauthorized manner.

DISA Rule

SV-82797r1_rule

Vulnerability Number

V-68307

Group Title

SRG-APP-000379-MFP-000186

Rule Version

SRG-APP-000379-MFP-000186

Severity

CAT II

CCI(s)

• CCI-001744 - The information system implements organization-defined security responses automatically if baseline configurations are changed in an unauthorized manner.

Weight

10

Fix Recommendation

Configure installation and/or configuration auditing settings to implement organization-defined automated security responses if baseline configurations are changed in an unauthorized manner.

Check Contents

Examine Installation configuration settings.

If the Mainframe Product does not implement organization-defined automated security responses if baseline configurations are changed in an unauthorized manner, this is a finding.

Vulnerability Number

V-68307

Documentable

False

Rule Version

SRG-APP-000379-MFP-000186

Severity Override Guidance

Examine Installation configuration settings.

If the Mainframe Product does not implement organization-defined automated security responses if baseline configurations are changed in an unauthorized manner, this is a finding.

Check Content Reference

M

Target Key

3061

Comments