Evaluation of NRC's Agencywide Documents Access and Management System (ADAMS) Functional and Operational Capabilities
Report Information
Recommendations
Upgrade ADAMS security posture to meet NIST SP 800-53, Rev 4.
Implement NRC Information Security Directorate (ISD) and NIST procedures for the consistent implementation of configuration management controls in ADAMS.
Configure ADAMS servers, applications, and other IT components according to NRC Information Security Directorate standards and requirements.
Apply corrective actions to eliminate vulnerability threats or mitigate identified risks and communicate those actions to NRC senior management as appropriate.
Implement quality assurance/peer review practices to ensure that the final version of the artifact follows the applicable NRC Information Security Directorate procedures and is accurate and consistent with other documents.