Key Security Indicators¶
Cybersecurity Education¶
Reviewing All Training¶
KSI-CED-RAT
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
The effectiveness of relevant cybersecurity education and training is persistently reviewed, including at least general training for all employees, role-specific training for employees in high risk roles, training for development and engineering staff on secure software delivery, and training for staff involved with incident response or disaster recovery.
Related SP 800-53 Controls: CP-03, IR-02, PS-06, AT-02, AT-02 (02), AT-02 (03), AT-03 (05), AT-04, IR-02 (03), AT-03, SR-11 (01)
Terms: Incident, Persistently, Vulnerability Response
Change Management¶
Logging Changes¶
KSI-CMT-LMC
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
Modifications to the cloud service offering are logged and monitored.
Related SP 800-53 Controls: AU-02, CM-03, CM-03 (02), CM-04 (02), CM-06, CM-08 (03), MA-02
Terms: Cloud Service Offering
Cloud Native Architecture¶
Restricting Network Traffic¶
KSI-CNA-RNT
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
Machine-based information resources are persistently reviewed to ensure they are appropriately configured to limit inbound and outbound network traffic.
Related SP 800-53 Controls: AC-17 (03), CA-09, CM-07 (01), SC-07 (05), SI-08
Terms: Information Resource, Machine-Based (Information Resources), Persistently
Identity and Access Management¶
Automating Account Management¶
KSI-IAM-AAM
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
The lifecycle and privileges of all accounts, roles, and groups are securely managed using automation.
Related SP 800-53 Controls: AC-02 (02), AC-02 (03), AC-02 (13), AC-06 (07), IA-04 (04), IA-12, IA-12 (02), IA-12 (03), IA-12 (05)
Adopting Passwordless Methods¶
KSI-IAM-APM
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
Secure passwordless methods are used for user authentication and authorization when feasible, otherwise strong passwords with phishing-resistant MFA is used.
Related SP 800-53 Controls: AC-03, IA-05 (01), IA-05 (02), IA-05 (06), IA-06, AC-02, IA-02, IA-02 (01), IA-02 (02), IA-02 (08), IA-05, IA-08, SC-23
Incident Response¶
Reviewing Incident Response Procedures¶
KSI-INR-RIR
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
The effectiveness of documented incident response procedures is persistently reviewed.
Related SP 800-53 Controls: IR-04, IR-04 (01), IR-06, IR-06 (01), IR-06 (03), IR-07, IR-07 (01), IR-08, IR-08 (01), SI-04 (05)
Terms: Incident, Persistently, Vulnerability Response
Service Configuration¶
Securing Information¶
KSI-SVC-SIN
Changelog:
- 2026-06-24: Official launch of the FedRAMP Consolidated Rules for 2026.
Information is encrypted or otherwise secured from unwanted access or modification.
Related SP 800-53 Controls: AC-01, AC-17 (02), CP-09 (08), SC-08, SC-08 (01), SC-13, SC-20, SC-21, SC-22, SC-23, SC-28, SC-28 (01)