CA-7(3) - Continuous Monitoring | Trend Analyses

Employ trend analyses to determine if control implementations, the frequency of continuous monitoring activities, and the types of activities used in the continuous monitoring process need to be modified based on empirical data.


Informational References

ISO 27001

ID: CA-7(3)
Enhancement of : CA-7

Countermeasures Covered by Control

ID Name Description D3FEND
CM0090 Continuous Monitoring Maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions.

Space Threats Tagged by Control

ID Description

Sample Requirements

Requirement Rationale/Additional Guidance/Notes
The [organization] shall modify control implementations, the frequency of continuous monitoring activities, and the types of activities used in the continuous monitoring process based on trend analysis of empirical data.{CA-7(3)}

Related SPARTA Techniques and Sub-Techniques

ID Name Description