Navigate

CCI-002022

CCI-002022 Definition

The organization authenticates organization-defined information system services using organization-defined security safeguards.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed documents and implements a process to authenticate information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed authenticates information system services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.

Compelling Evidence

1.) Signed and dated SOP/TTP documenting the process to authenticate information systems services defined in IA-9, CCIs 2017 & 2018 using security safeguards defined in IA-9, CCIs 2019-2020.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002022.

Control	Description
IA-9	The organization identifies and authenticates [Assignment: organization-defined information system services] using [Assignment: organization-defined security safeguards].