last sync: 2024-Mar-28 18:44:05 UTC

Microsoft Managed Control 1552 - Vulnerability Scanning | Update By Frequency / Prior To New Scan / When Identified | Regulatory Compliance - Risk Assessment

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1552 - Vulnerability Scanning | Update By Frequency / Prior To New Scan / When Identified
Id 43684572-e4f1-4642-af35-6b933bc506da
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Risk Assessment control
Additional metadata Name/Id: ACF1552 / Microsoft Managed Control 1552
Category: Risk Assessment
Title: Vulnerability Scanning | Update By Frequency / Prior To New Scan / When Identified
Ownership: Customer, Microsoft
Description: The organization updates the information system vulnerabilities scanned continuously, before each scan.
Requirements: The vulnerability scanning tools used within the Azure environment include the capability to readily update the list of information system vulnerabilities to be scanned. The tools release new vulnerability definitions as needed following the publication of Common Vulnerability and Exposures (CVE) information. New signature files are updated either before each scan or, for Qualys off-node scan signatures, at least weekly, with scans performed daily.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC