Navigate

CCI-002080

CCI-002080 Definition

The organization employs either an allow-all, deny-by-exception or a deny-all, permit-by-exception policy for allowing organization-defined information systems to connect to external information systems.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002080.

Control	Description
CA-3(5)	The organization employs [one of "allow-all, deny-by-exception"/"deny-all, permit-by-exception"] policy for allowing [one of ] to connect to external information systems.