NIST 800-171 R-3.12.3
Continuously Monitor Controls
Official citation: 3.12.3
Class: core · Severity: medium
Statement of the obligation — verify against source
3.12.3
What it means
Monitor your security controls on an ongoing basis to ensure they stay effective over time, rather than relying only on point-in-time assessments. Continuous monitoring catches configuration drift, new weaknesses, and changes that affect your security posture.
Educational reference only — not legal advice. Consult a qualified assessor or attorney for binding compliance determinations.