AzPolicyAdvertizer

last sync: 2025-Oct-30 18:23:17 UTC

Implement security testing, training, and monitoring plans | Regulatory Compliance - Documentation

Azure BuiltIn Policy definition

Source Azure Portal
Display name Implement security testing, training, and monitoring plans
Id 21832235-7a07-61f4-530d-d596f76e5b95
Version 1.1.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]
Category Regulatory Compliance
Microsoft Learn
Description CMA_C1753 - Implement security testing, training, and monitoring plans
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Additional metadata Name/Id: CMA_C1753 / CMA_C1753
Category: Documentation
Title: Implement security testing, training, and monitoring plans
Ownership: Customer
Description: The customer is responsible for implementing a process for ensuring that organizational plans for conducting security testing, training, and monitoring activities associated with organizational information systems: 1. Are developed and maintained; and 2. Continue to be executed in a timely manner.
Requirements: The customer is responsible for implementing this recommendation.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Manual
Allowed
Manual, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types IF (1)
Compliance
The following 1 compliance controls are associated with this Policy definition 'Implement security testing, training, and monitoring plans' (21832235-7a07-61f4-530d-d596f76e5b95)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
hipaa 0108.02d1Organizational.23-02.d hipaa-0108.02d1Organizational.23-02.d 0108.02d1Organizational.23-02.d 01 Information Protection Program 0108.02d1Organizational.23-02.d 02.03 During Employment Shared n/a The organization ensures plans for security testing, training, and monitoring activities are developed, implemented, maintained, and reviewed for consistency with the risk management strategy and response priorities. 8
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
HITRUST/HIPAA a169a624-5599-4385-a696-c8d643089fab Regulatory Compliance GA BuiltIn unknown
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-09-27 16:35:32 change Minor (1.0.0 > 1.1.0)
2022-09-19 17:41:40 add 21832235-7a07-61f4-530d-d596f76e5b95
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC