CCI-001046
CCI-001046 Definition
Document the security categorization results including supporting rationale in the security plan for the system.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
The organization being inspected/assessed documents the security categorization results (including supporting rationale) in the security plan for the information system IAW CNSSI 1253.
Validation Procedures
The organization conducting the inspection/assessment obtains and examines the documented security categorization results to ensure the organization being inspected/assessed documents the security categorization results (including supporting rationale) in the security plan for the information system IAW CNSSI 1253.
Compelling Evidence
1.) System security plan (SSP). 2.) Reference to system security plan (SSP) section pertaining to Risk Assessment Implementation and reference a procedure for categorizing information.