Navigate

CCI-001015

CCI-001015 Definition

The organization defines types of digital and/or non-digital media to physically control and securely store within organization-defined controlled areas.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information.

Validation Procedures

The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the digital and non-digital media types as all digital and non-digital media containing sensitive, controlled, and/or classified information.

Compelling Evidence

Automatically compliant

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001015.

Control	Description
MP-4	The organization: MP-4a.: Physically controls and securely stores [Assignment: organization-defined types of digital and/or non-digital media] within [Assignment: organization-defined controlled areas]; and MP-4b.: Protects information system media until the media are destroyed or sanitized using approved equipment, techniques, and procedures.