Embedded Files
This page is classified as INTERNAL.
NIST 800-53 (r4) Control
The organization employs automated mechanisms to detect the presence of water in the vicinity of the information system and alerts [FedRAMP Assignment: (H) service provider building maintenance/physical security personnel].
NIST 800-53 (r4) Supplemental Guidance
Automated mechanisms can include, for example, water detection sensors, alarms, and notification systems.
NIST 800-53 (r5) Discussion
Automated mechanisms include notification systems, water detection sensors, and alarms.
38North Guidance:
Meets Minimum Requirement:
Document / diagram water detection sensors in the data center.
Install water detection sensors in the data center.
Configure alerting to documented roles.
Best Practice:
Use leak detection sensors (e.g continuous rope-style sensors) under raised floors.
Use continuous sensors along pipes.
If drop ceilings are used, install sensors.
Implement a zone leak detection system.
Correlate water sensor data with heat and humidity data.
Unofficial FedRAMP Guidance:
TBD
Assessment Evidence:
Review documents / diagrams describing placement of water detection sensors and approach.
Interview roles receiving alerts to validate that they understand their responsibilities.
Inspect water detection sensors and centralized monitoring.
CSP Implementation Tips:
AWS: Fully inherited.
Azure: Fully inherited.
GCP: Fully inherited.
Page updated
Report abuse