last sync: 2024-May-24 18:03:04 UTC

Microsoft Managed Control 1146 - Security Assessments | Regulatory Compliance - Security Assessment and Authorization

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1146 - Security Assessments
Id dd83410c-ecb6-4547-8f14-748c3cbdc7ac
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Security Assessment and Authorization control
Additional metadata Name/Id: ACF1146 / Microsoft Managed Control 1146
Category: Security Assessment and Authorization
Title: Security Assessments - Results Report
Ownership: Customer, Microsoft
Description: The organization: Produces a security assessment report that documents the results of the assessment; and
Requirements: Upon completion of the security assessment, a Security Assessment Report (SAR) is developed by the Third Party Assessment Organization (3PAO) to document the results of security assessment and the risks associated with the system. The SAR documents the results of the assessment, including security controls that are considered other than satisfied, security control weaknesses, recommended remediation steps, and the risks associated with the system.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC