What is continuous monitoring in security assessment?
CISSP Flashcards: Security Assessment, Penetration Testing, Vulnerability Management
Audio flashcard · 0:24Nortren·
What is continuous monitoring in security assessment?
0:24
Continuous monitoring is the ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions. NIST SP 800-137 defines it as maintaining situational awareness through automated tools that continuously assess security controls, collect security data, and report on the security posture. This replaces the outdated approach of point-in-time assessments that quickly become stale.
---
csrc.nist.gov