NIST CSF 2.0 · PR Protect
PR.PS-01 Configuration management practices established
Configuration management practices are established and applied to maintain secure baselines.
Mapped across 10 provisions
Equivalent and related requirements in other frameworks and regulations.
- CIS Controls v8EquivalentOfficial mapping
Source: CIS Controls v8 / NIST CSF 2.0
4.1 Establish and maintain a secure configuration processSecure configuration & hardening
- NIST 800-53EquivalentOfficial mapping
Source: NIST CSF 2.0 / SP 800-53 Rev. 5
CM-6 Configuration settingsSecure configuration & hardening
- PCI DSSEquivalentOfficial mapping
Source: PCI DSS v4.0 / NIST CSF 2.0
Req. 2 Apply secure configurations to all system componentsSecure configuration & hardening
- Cyber EssentialsEquivalentCuratedCE-2 Secure configuration
Secure configuration & hardening
- Cyber EssentialsPartialCuratedCE-1 Firewalls
Secure configuration & hardening
- Essential EightPartialCuratedE8-5 Application control
Secure configuration & hardening
- Essential EightPartialCuratedE8-6 Restrict Microsoft Office macros
Secure configuration & hardening
- Essential EightPartialCuratedE8-7 User application hardening
Secure configuration & hardening
- ISO 27001EquivalentCuratedA.8.9 Configuration management
Secure configuration & hardening
- NIST 800-171EquivalentCurated3.4.2 Establish and enforce security configuration settings
Secure configuration & hardening