NIST 800-53 REV 5 • SYSTEM AND INFORMATION INTEGRITY

SI-7(3)Centrally Managed Integrity Tools

Employ centrally managed integrity verification tools.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Centrally managed integrity verification tools provides greater consistency in the application of such tools and can facilitate more comprehensive coverage of integrity verification actions.

Practitioner Notes

Manage integrity monitoring tools from a central console to ensure consistent coverage and configuration across all systems.

Example 1: Use Tripwire Enterprise or OSSEC Manager to centrally configure, deploy, and manage file integrity monitoring policies across all servers and workstations. One console shows compliance status for every monitored system.

Example 2: In Microsoft Defender for Endpoint, use the FIM feature that centrally reports file changes across all enrolled devices through the Defender portal. You get a single view of all integrity changes across your fleet without managing individual agent configurations.

More System and Information Integrity Controls

SI-1 Policy and Procedures SI-2 Flaw Remediation SI-2(1) Central Management SI-2(2) Automated Flaw Remediation Status