STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 7 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← All Controls

PM-14

Program ManagementRev 5

Testing, Training, and Monitoring

CCI Identifiers (21)

CCI-002998Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are developed.CCI-002999Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are maintained.CCI-003000Implement a process for ensuring that organizational plans for conducting security training activities associated with organizational systems are developed.CCI-003001Implement a process for ensuring that organizational plans for conducting security training activities associated with organizational systems are maintained.CCI-003002Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems are developed.CCI-003003Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems are maintained.CCI-003004Implement a process for ensuring that organizational plans for conducting security testing associated with organizational systems continue to be executed.CCI-003005Implement a process for ensuring that organizational plans for conducting security training associated with organizational systems continue to be executed.CCI-003006Implement a process for ensuring that organizational plans for conducting security monitoring activities associated with organizational systems continue to be executed.CCI-003007Review testing plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.CCI-003008Review training plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.CCI-003009Review monitoring plans for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.CCI-004353Implement a process for ensuring that organizational plans for conducting privacy testing activities associated with organizational systems are developed.CCI-004354Implement a process for ensuring that organizational plans for conducting privacy testing activities associated with organizational systems are maintained.CCI-004355Implement a process for ensuring that organizational plans for conducting privacy training activities associated with organizational systems are developed.CCI-004356Implement a process for ensuring that organizational plans for conducting privacy training activities associated with organizational systems are maintained.CCI-004357Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational systems are developed.CCI-004358Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational information systems are maintained.CCI-004359Implement a process for ensuring that organizational plans for conducting privacy testing associated with organizational systems continue to be executed.CCI-004360Implement a process for ensuring that organizational plans for conducting privacy training associated with organizational systems continue to be executed.CCI-004361Implement a process for ensuring that organizational plans for conducting privacy monitoring activities associated with organizational systems continue to be executed.

Linked STIG Checks (1)

Across 1 STIGs. Click to expand.