Operational Events Calendar

Establish and Maintain Detailed Enterprise Asset Inventory

Establish and Maintain a Software Inventory

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Allowlist Authorized Software

Allowlist Authorized Libraries

Allowlist Authorized Scripts

Establish and Maintain an Inventory of Accounts

Establish and Maintain an Inventory of Service Accounts

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Internal Enterprise Assets

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Test Data Recovery

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Designate Personnel to Manage Incident Handling

Establish and Maintain Contact Information for Reporting Security Incidents

Establish and Maintain an Enterprise Process for Reporting Incidents

Establish and Maintain an Incident Response Process

Assign Key Roles and Responsibilities

Define Mechanisms for Communicating During Incident Response

Conduct Routine Incident Response Exercises

Conduct Post>Incident Reviews

Establish and Maintain Security Incident Thresholds

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Utilize Automated Software Inventory Tools

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Data Management Process

Encrypt Sensitive Data in Transit

Encrypt Sensitive Data at Rest

Segment Data Processing and Storage Based on Sensitivity

Deploy a Data Loss Prevention Solution

Log Sensitive Data Access

Establish and Maintain a Data Inventory

Configure Data Access Control Lists

Enforce Data Retention

Securely Dispose of Data

Encrypt Data on End>User Devices

Establish and Maintain a Data Classification Scheme

Document Data Flows

Encrypt Data on Removable Media

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Maintain a Security Awareness Program

Train Workforce Members to Recognize Social Engineering Attacks

Train Workforce Members on Authentication Best Practices

Train Workforce on Data Handling Best Practices

Train Workforce Members on Causes of Unintentional Data Exposure

Train Workforce Members on Recognizing and Reporting Security Incidents

Train Workforce on How to Identify and Report if Their Enterprise Assets are Missing Security Updates

Train Workforce on the Dangers of Connecting to and Transmitting Enterprise Data Over Insecure Networks

Conduct Role>Specific Security Awareness and Skills Training

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Secure Configuration Process

Enforce Automatic Device Lockout on Portable End>User Devices

Enforce Remote Wipe Capability on Portable End>User Devices

Separate Enterprise Workspaces on Mobile End>User Devices

Establish and Maintain a Secure Configuration Process for Network Infrastructure

Configure Automatic Session Locking on Enterprise Assets

Implement and Manage a Firewall on Servers

Implement and Manage a Firewall on End>User Devices

Securely Manage Enterprise Assets and Software

Manage Default Accounts on Enterprise Assets and Software

Uninstall or Disable Unnecessary Services on Enterprise Assets and Software

Configure Trusted DNS Servers on Enterprise Assets

Establish and Maintain an Inventory of Accounts

Establish and Maintain an Inventory of Service Accounts

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Internal Enterprise Assets

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Test Data Recovery

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Use Unique Passwords

Disable Dormant Accounts

Restrict Administrator Privileges to Dedicated Administrator Accounts

Centralize Account Management

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Maintain an Inventory of Service Providers

Establish and Maintain a Service Provider Management Policy

Classify Service Providers

Ensure Service Provider Contracts Include Security Requirements

Assess Service Providers

Monitor Service Providers

Securely Decommission Service Providers

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish an Access Granting Process

Establish an Access Revoking Process

Require MFA for Externally>Exposed Applications

Require MFA for Remote Network Access

Require MFA for Administrative Access

Establish and Maintain an Inventory of Authentication and Authorization Systems

Centralize Access Control

Define and Maintain Role>Based Access Control

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Establish and Maintain Detailed Enterprise Asset Inventory

Establish and Maintain a Software Inventory

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Allowlist Authorized Software

Allowlist Authorized Libraries

Allowlist Authorized Scripts

Establish and Maintain an Inventory of Accounts

Establish and Maintain an Inventory of Service Accounts

Establish and Maintain a Vulnerability Management Process

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Internal Enterprise Assets

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Establish and Maintain a Data Recovery Process 

Protect Recovery Data

Establish and Maintain an Isolated Instance of Recovery Data 

Test Data Recovery

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Establish and Maintain an Audit Log Management Process

Retain Audit Logs

Collect Service Provider Logs

Collect Audit Logs

Ensure Adequate Audit Log Storage

Standardize Time Synchronization

Collect Detailed Audit Logs

Collect DNS Query Audit Logs

Collect URL Request Audit Logs

Collect Command>Line Audit Logs

Centralize Audit Logs

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Use of Only Fully Supported Browsers and Email Clients

Use DNS Filtering Services

Maintain and Enforce Network>Based URL Filters

Restrict Unnecessary or Unauthorized Browser and Email Client Extensions

Implement DMARC

Block Unnecessary File Types

Deploy and Maintain Email Server Anti>Malware Protections

Ensure Network Infrastructure is Up>to>Date

Centralize Security Event Alerting

Perform Application Layer Filtering

Tune Security Event Alerting Thresholds

Deploy a Host>Based Intrusion Detection Solution

Deploy a Network Intrusion Detection Solution

Perform Traffic Filtering Between Network Segments

Manage Access Control for Remote Assets

Collect Network Traffic Flow Logs

Deploy a Host>Based Intrusion Prevention Solution

Deploy a Network Intrusion Prevention Solution

Deploy Port>Level Access Control

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain an Inventory of Accounts

Establish and Maintain an Inventory of Service Accounts

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Internal Enterprise Assets

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Deploy and Maintain Anti>Malware Software

Configure Automatic Anti>Malware Signature Updates

Disable Autorun and Autoplay for Removable Media

Configure Automatic Anti>Malware Scanning of Removable Media

Enable Anti>Exploitation Features

Centrally Manage Anti>Malware Software

Use Behavior>Based Anti>Malware Software

Test Data Recovery

Ensure Network Infrastructure is Up>to>Date

Establish and Maintain a Secure Network Architecture

Securely Manage Network Infrastructure

Establish and Maintain Architecture Diagram(s)

Centralize Network Authentication, Authorization, and Auditing (AAA)

Use of Secure Network Management and Communication Protocols 

Ensure Remote Devices Utilize a VPN and are Connecting to an Enterprise’s AAA Infrastructure

Establish and Maintain Dedicated Computing Resources for All Administrative Work

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Maintain a Secure Application Development Process

Apply Secure Design Principles in Application Architectures

Leverage Vetted Modules or Services for Application Security Components

Implement Code>Level Security Checks

Conduct Application Penetration Testing

Conduct Threat Modeling

Establish and Maintain a Process to Accept and Address Software Vulnerabilities

Perform Root Cause Analysis on Security Vulnerabilities

Establish and Manage an Inventory of Third>Party Software Components

Use Up>to>Date and Trusted Third>Party Software Components

Establish and Maintain a Severity Rating System and Process for Application Vulnerabilities

Use Standard Hardening Configuration Templates for Application Infrastructure

Separate Production and Non>Production Systems

Train Developers in Application Security Concepts and Secure Coding

Ensure Authorized Software is Currently Supported

Address Unauthorized Software

Establish and Maintain a Remediation Process

Perform Automated Operating System Patch Management

Perform Automated Application Patch Management

Perform Automated Vulnerability Scans of Externally>Exposed Enterprise Assets

Remediate Detected Vulnerabilities

Ensure Network Infrastructure is Up>to>Date

Tune Security Event Alerting Thresholds

Establish and Manage an Inventory of Third>Party Software Components

Establish and Maintain a Penetration Testing Program

Perform Periodic External Penetration Tests

Remediate Penetration Test Findings

Validate Security Measures

Perform Periodic Internal Penetration Tests