CCI-002099

The organization employs organization-defined red team exercises to simulate attempts by adversaries to compromise organizational information systems in accordance with organization-defined rules of engagement.

Implementation Guidance

The organization being inspected/assessed employs red team exercises defined in CA-8 (2), CCI 2097 to simulate attempts by adversaries to compromise organizational information systems in accordance with rules of engagement defined in CA-8 (2), CCI 2098. The organization must maintain a record of red team exercises and results.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the record of red team exercises and results to ensure the organization being inspected/assessed employs red team exercises defined in CA-8 (2), CCI 2097 to simulate attempts by adversaries to compromise organizational information systems in accordance with rules of engagement defined in CA-8 (2), CCI 2098.

Compelling Evidence

1.) Record of Red Team exercises 2.) Results of the Red Team exercise as defined in CA 8 (2), CCI 2097 to simulate attempts by adversaries to compromise organizational information systems IAW the rules of engagement defined in CA-8 (2), CCI 2098.

The controls below (if any) were marked by NIST as being related to CCI-002099.