← Back to Home 📄 Display JSON

📝 Kubernetes System Plan of Action and Milestones - DORA

Plan of Action and Milestones for Remediation Tracking

POA&M Information

UUID 31661383-ff68-44bd-b4ce-ab1a2fdbf317
Regulation EU DORA
System ID system-001
POA&M Item Count 10
Source Assessment Kubernetes-System-ar-dora
Version 1.0
Last Modified 2026-05-09 08:08:28.933797
OSCAL Version 1.2.1

Referenced System Security Plan

SSP Location: trestle://system-security-plans/Kubernetes-System-ssp-dora/system-security-plan.json

Findings (10)

Control ac-2 assessment outcome

Control ac-2 is partially-satisfied based on 11 passing and 5 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: ac-2
Target: Control ac-2

Control au-2 assessment outcome

Control au-2 is partially-satisfied based on 3 passing and 3 failing mapped XCCDF rule evaluations across 4 assessed subjects with 45% mapping coverage (partial coverage = partially-satisfied).

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: au-2
Target: Control au-2

Control au-6.4 assessment outcome

Control au-6.4 is partially-satisfied based on 6 passing and 6 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: au-6.4
Target: Control au-6.4

Control cm-2 assessment outcome

Control cm-2 is partially-satisfied based on 10 passing and 2 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: cm-2
Target: Control cm-2

Control cm-7 assessment outcome

Control cm-7 is partially-satisfied based on 13 passing and 3 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: cm-7
Target: Control cm-7

Control ia-5 assessment outcome

Control ia-5 is partially-satisfied based on 13 passing and 3 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: ia-5
Target: Control ia-5

Control sc-23 assessment outcome

Control sc-23 is partially-satisfied based on 14 passing and 2 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: sc-23
Target: Control sc-23

Control sc-8 assessment outcome

Control sc-8 is partially-satisfied based on 7 passing and 1 failing mapped XCCDF rule evaluations across 4 assessed subjects with 35% mapping coverage (partial coverage = partially-satisfied).

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: sc-8
Target: Control sc-8

Control si-4 assessment outcome

Control si-4 is partially-satisfied based on 11 passing and 1 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: si-4
Target: Control si-4

Control si-7 assessment outcome

Control si-7 is partially-satisfied based on 11 passing and 1 failing mapped XCCDF rule evaluations across 4 assessed subjects.

Target Type: FindingTargetTypeValidValues.objective_id
Target ID: si-7
Target: Control si-7

POA&M Items (10)

Remediate ac-2

Address non-compliance for control ac-2 with 5 failing rule evaluations

Priority: MEDIUM Control: ac-2 Failures: 5
Related Findings:
  • 🔍 26e5b24d-b101-427f-b966-7115ad18cc5d
Related Observations:
  • 👁️ 477ad0c3-e7e8-4b1a-8649-1fc1e43ba7eb

Remediate au-2

Address non-compliance for control au-2 with 3 failing rule evaluations

Priority: MEDIUM Control: au-2 Failures: 3
Related Findings:
  • 🔍 e04e9ead-32ad-4dfb-9d0d-94d14cf0a608
Related Observations:
  • 👁️ b52bd57a-d82c-4820-8330-abb69d115a2b

Remediate au-6.4

Address non-compliance for control au-6.4 with 6 failing rule evaluations

Priority: HIGH Control: au-6.4 Failures: 6
Related Findings:
  • 🔍 d8f2d167-8b5b-487a-ba64-b70a088fdaf7
Related Observations:
  • 👁️ 8526c551-3260-4017-bede-094979eead34

Remediate cm-2

Address non-compliance for control cm-2 with 2 failing rule evaluations

Priority: LOW Control: cm-2 Failures: 2
Related Findings:
  • 🔍 8b5fe7be-c726-434a-884f-d3d342b25716
Related Observations:
  • 👁️ cb8ddbe1-9835-43cd-a108-f79d0cafa893

Remediate cm-7

Address non-compliance for control cm-7 with 3 failing rule evaluations

Priority: MEDIUM Control: cm-7 Failures: 3
Related Findings:
  • 🔍 0934acf8-3af0-4f9a-a3fd-d5e0e4f82f6b
Related Observations:
  • 👁️ a185e52a-a32b-4dd3-aba4-81d1b07887ee

Remediate ia-5

Address non-compliance for control ia-5 with 3 failing rule evaluations

Priority: MEDIUM Control: ia-5 Failures: 3
Related Findings:
  • 🔍 2836f641-4ebc-4471-b889-8593f3f5a22f
Related Observations:
  • 👁️ 90c31d34-1126-4a18-9833-c292a81b5dd5

Remediate sc-23

Address non-compliance for control sc-23 with 2 failing rule evaluations

Priority: LOW Control: sc-23 Failures: 2
Related Findings:
  • 🔍 143f2298-12d1-4050-bceb-3ef3ebb27aa9
Related Observations:
  • 👁️ dac34051-4c66-4a98-866b-73776cee0c5f

Remediate sc-8

Address non-compliance for control sc-8 with 1 failing rule evaluations

Priority: LOW Control: sc-8 Failures: 1
Related Findings:
  • 🔍 f42928d1-57af-43f9-a353-278922b0de94
Related Observations:
  • 👁️ 1644d3ce-025e-4d02-a7ed-1d58a31a2a50

Remediate si-4

Address non-compliance for control si-4 with 1 failing rule evaluations

Priority: LOW Control: si-4 Failures: 1
Related Findings:
  • 🔍 be8d4d10-7e1d-4cb4-8a1d-ead0393faf64
Related Observations:
  • 👁️ f4317ced-fadb-4acb-a5d6-ef4e44a01a8f

Remediate si-7

Address non-compliance for control si-7 with 1 failing rule evaluations

Priority: LOW Control: si-7 Failures: 1
Related Findings:
  • 🔍 05733fde-4580-4c91-9973-958a7963213b
Related Observations:
  • 👁️ ff6661fe-5667-4f20-aa4b-f5dab5b566a2