Level N/A
Configurations, including security configurations, of hardware, software, services and networks should be established, documented, implemented, monitored and reviewed.