🧱 Security Policies (FedRAMP Moderate)
This section includes three policy documents demonstrating compliance with FedRAMP Moderate, NIST SP 800‑53 Rev. 5, and DoD IA standards.
| Policy | Description |
|---|---|
| Password Policy | Defines password complexity, reuse limits, and change intervals per IA‑5. |
| Access Management Policy | Governs provisioning, access reviews, and privilege management per AC‑2 and AC‑6. |
| Acceptable Use Policy | Establishes rules for system access and user accountability. |
Key Controls Referenced: AC‑2, AC‑6, IA‑5, PL‑4
Purpose: Standardize user accountability, access control, and credential management consistent with federal cybersecurity mandates.
🔙 Return to Home