Benchmark: 0640.10k2Organizational.1012-10.k 10.05 Security In Development and Support Processes

Description

Where development is outsourced, change control procedures to address security are included in the contract(s) and specifically require the developer to track security flaws and flaw resolution within the system, component, or service and report findings to organization-defined personnel or roles.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-azure-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 0640.10k2Organizational.1012-10.k 10.05 Security In Development and Support Processes.

Run this benchmark in your terminal:

powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_0640_10k2organizational

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_0640_10k2organizational --share

Controls

Windows machines should meet requirements for 'System Audit Policies - Detailed Tracking'

Benchmark: 0640.10k2Organizational.1012-10.k 10.05 Security In Development and Support Processes

Description

Usage

Controls

Tags