The organization must implement required procedures for reporting the results of WMAN intrusion scans.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-MPOL-018	SRG-MPOL-018	SRG-MPOL-018_rule		Low

Description
If scan results are not properly reported and acted on, the site could be vulnerable to wireless attack.

STIG	Date
Mobile Policy Security Requirements Guide	2012-10-10

Details

Check Text ( C-SRG-MPOL-018_chk )
Review the site Incident Response Plan (IRP) and determine if it includes procedures for reporting unauthorized access, jamming, or electromagnetic interference identified during active electromagnetic scanning. Determine if the site has a Standard Operating Procedure (SOP) that addresses intrusion, jamming, or electromagnetic interference. If the IR plan and/or SOP does not address these requirements, this is a finding.

Check Text ( C-SRG-MPOL-018_chk )

Review the site Incident Response Plan (IRP) and determine if it includes procedures for reporting unauthorized access, jamming, or electromagnetic interference identified during active electromagnetic scanning.

Determine if the site has a Standard Operating Procedure (SOP) that addresses intrusion, jamming, or electromagnetic interference.

If the IR plan and/or SOP does not address these requirements, this is a finding.

Fix Text (F-SRG-MPOL-018_fix)
Ensure the IIRP and SOP have the required procedures for reporting the results of WMAN intrusion scans.