3.11.3[b]

  • Determination Statement

    Vulnerabilities are remediated in accordance with risk assessments.

  • Requirement

    Remediate vulnerabilities in accordance with risk assessments.

  • Requirement Discussion

    Vulnerabilities discovered, for example, via the scanning conducted in response to 3.11.2, are remediated with consideration of the related assessment of risk. The consideration of risk influences the prioritization of remediation efforts and the level of effort to be expended in the remediation for specific vulnerabilities.

More Info

  • Family

    Risk Assessment
  • DoD Scoring Methodology Points

    1

  • Related NIST 800-171 ID

  • Related CMMC ID

  • Related NIST 800-53 ID

    RA-5

  • Reference Documents

    • N/A

NIST 800-171A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!