Check: EC-03.03.01
Traditional Security Checklist:
EC-03.03.01
(in versions v2 r5 through v1 r3)
Title
Environmental IA Controls - Voltage Control (power) (Cat III impact)
Discussion
Failure to use automatic voltage control can result in damage to the IT equipment creating a service outage. REFERENCES: DoD 5220.22-M (NISPOM), Incorporating Change 2, 18 May 2016 Chapter 5, Section 1, paragraph 5-104 NIST Special Publication 800-53 (SP 800-53), Rev 4, Controls: PE-9(2) NIST SP 800-12, An Introduction to Computer Security: The NIST Handbook NIST SP 800-100 Information Security Handbook: A Guide for Managers
Check Content
Check there is an IT area voltage control unit and that it is being utilized for all key IT assets. NOTES: This requirement should not be applied to a tactical environment, unless it is a fixed computer facility supporting missions in a Theater of Operations. The standards to be applied for applicability in a tactical environment are: 1) The facility containing the computer room has been in operation over one year. 2) The facility is "fixed facility" - a hard building made from normal construction materials - wood, steel, brick, stone, mortar, etc.
Fix Text
An Information Technology (IT) area voltage control unit must be installed and used for all key IT assets.
Additional Identifiers
Rule ID: SV-245747r822814_rule
Vulnerability ID: V-245747
Group Title: EC-03.03.01
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |