Navigate

CCI-002054

CCI-002054 Definition

The organization defines indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed defines and documents indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems. DoD has determined the indicators are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented indicators to ensure the organization being inspected/assessed defines indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems. DoD has determined the indicators are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Documentation that defines indicators of malicious code to recognize suspicious communications and anomalous behavior in organizational information systems.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002054.

Control	Description
AT-3 (4)	The organization provides training to its personnel on [Assignment: organization-defined indicators of malicious code] to recognize suspicious communications and anomalous behavior in organizational information systems.