Guides
- NIST SP 800-137 – Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations
- Cloud.gov – Continuous Monitoring Strategy
- SANS Institute – A Guide to Security Metrics
Sample Policy & Procedures
Additional Lessons Learned
Videos
- YouTube – The Fundamentals of Continuous Monitoring – An Integral Part of Risk Management Strategies