How Can We Help?
This Security Requirements Traceability Matrix (SRTM) workbook is to be used to document the test results from a 3PAO assessment.
Definition:
SRTM is a Matrix that captures all security requirements linked to potential risks and addresses all applicable C&A requirements. It is, therefore, a correlation statement of a system’s security features and compliance methods for each security requirement.
SOURCE: CNSSI-4009
Used In A Sentence:
Where the hell did Jennifer just go? She has my only copy of the current SRTM that we need to give to TEKRiSQ!
NIST 800-53, also known as the security controls traceability matrix (SCTM), it is a document that the federal government utilizes to ensure compliance of new systems that are becoming active and going an accreditation process.
See Also: discussions of SRTM in link to CISA CRR Resource Guide
