Skip to content

Added Controls and Content to Financial Services Regulatory Compliance page

Melissa Farber requested to merge add-controls-financial-compliance-page into master

Please review and advise. If approved, please merge.

Added Controls and Content to Financial Services Regulatory Compliance page:

  1. Added Configuration Management supporting Change Management Controls
  • NIST 800-53, Rev. 4: CM-2
  • NIST 800-53, Rev. 4: CM-3
  1. Added Configuration Change Control
  • NIST 800-53, Rev. 4: CM-3
  1. Added Access Restriction for Changes to Configurations and Pipelines
  • NIST 800-53, Rev. 4: CM-5
  • NIST 800-53, Rev. 4: AC-3 (Logical Access Enforcement)
  • ISO 27002 9 Access Controls

  1. Added Identity and Access Approval Controls that Ensure Proper SODs

  2. Added Operations Security via Protections on for Branches and Environments

  3. Added control mappings to Security section along with Future feature

  4. Change Management : updated control language and added Future features

  5. Updated Segregation of Duties section

/cc @jlenny @danielgruesso @jeremy @plafoucriere @cblake @joshlambert @LuckieG @kathyw @williamchia

Merge request reports