Navigate

CCI-001810

CCI-001810 Definition

The organization defines the personnel or roles to be notified when unauthorized software is detected.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed must define and document the personnel or roles to be notified when unauthorized software is detected. DoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documentation of the personnel or roles to be notified when unauthorized software is detected to ensure that ISSO and ISSM and others as the local organization deems appropriate are defined. DoD has defined the personnel or roles that must be notified when unauthorized software is detected as the ISSO and ISSM and others as the local organization deems appropriate.

Compelling Evidence

1.) Documentation that defines the personnel or roles to be notified when unauthorized software is detected

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001810.

Control	Description
CM-11 (1)	The information system alerts [Assignment: organization-defined personnel or roles] when the unauthorized installation of software is detected.