NIST 800-53 REV 5 • SYSTEM AND INFORMATION INTEGRITY

SI-6(3)Report Verification Results

Report the results of security and privacy function verification to {{ insert: param, si-06.03_odp }}.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Organizational personnel with potential interest in the results of the verification of security and privacy functions include systems security officers, senior agency information security officers, and senior agency officials for privacy.

Practitioner Notes

Report the results of security function verification to appropriate personnel so leadership knows whether controls are working.

Example 1: Generate monthly security control health reports from your SIEM and vulnerability scanner showing: patch compliance rates, antivirus coverage, firewall rule review status, and access control audit results. Present these to your CISO and system owner.

Example 2: Use Microsoft Secure Score as a continuously updated report card for your M365 security controls. Share the score and improvement recommendations with leadership monthly. Track the score trend over time to show whether your security posture is improving.

More System and Information Integrity Controls

SI-1 Policy and Procedures SI-2 Flaw Remediation SI-2(1) Central Management SI-2(2) Automated Flaw Remediation Status