Added Controls and Content to Financial Services Regulatory Compliance page
Please review and advise. If approved, please merge.
Added Controls and Content to Financial Services Regulatory Compliance page:
- Added Configuration Management supporting Change Management Controls
- NIST 800-53, Rev. 4: CM-2
- NIST 800-53, Rev. 4: CM-3
- Added Configuration Change Control
- NIST 800-53, Rev. 4: CM-3
- Added Access Restriction for Changes to Configurations and Pipelines
- NIST 800-53, Rev. 4: CM-5
- NIST 800-53, Rev. 4: AC-3 (Logical Access Enforcement)
- ISO 27002 9 Access Controls
-
Added Identity and Access Approval Controls that Ensure Proper SODs
-
Added Operations Security via Protections on for Branches and Environments
-
Added control mappings to Security section along with Future feature
-
Change Management : updated control language and added Future features
-
Updated Segregation of Duties section
/cc @jlenny @danielgruesso @jeremy @plafoucriere @cblake @joshlambert @LuckieG @kathyw @williamchia