Scoping Considerations

Scoping Considerations definition in Computer Security terms:

Acronym(s): None

Definition(s): A part of tailoring guidance providing organizations with specific considerations on the applicability and implementation of security controls in the security control baseline. Areas of consideration include policy/regulatory, technology, physical infrastructure, system component allocation, operational/environmental, public access, scalability, common control, and security objective.
Source(s): CNSSI 4009-2015 (NIST SP 800-53 Rev. 4)
NIST SP 800-53 Rev. 4

Synonym(s): None

 

reference: CSRC Glossary