PCF Compliance

Not required for FISMA Moderate.

Control Description

The organization develops, monitors, and reports on the results of information security measures of performance.

Supplemental Guidance

Measures of performance are outcome-based metrics used by an organization to measure the effectiveness or efficiency of the information security program and the security controls employed in support of the program.

check-circle-line exclamation-circle-line close-line
Scroll to top icon