An error occurred:
Close sidebar
Xylok
Home Menu
[email protected]
© 2024
Xylok, LLC
Version: v2024.04.1-c0c9-98fb
Xylok
Home Menu
[email protected]
© 2024
Xylok, LLC
Version: v2024.04.1-c0c9-98fb
Open sidebar
Navigate
Top
Description
MAD
Related
CCI-002106
CCI-002106
Definition
The organization documents the access control policy.
Status
Type
CheckType.policy
Master Assessment Datasheet
Implementation Guidance
Validation Procedures
Compelling Evidence
Related Controls
The controls below (if any) were marked by NIST as being related to
CCI-002106
.
Control
Description
AC-1
The organization:
AC-1a.: Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]:
AC-1a.1.: An access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
AC-1a.2.: Procedures to facilitate the implementation of the access control policy and associated access controls; and
AC-1b.: Reviews and updates the current:
AC-1b.1.: Access control policy [Assignment: organization-defined frequency]; and
AC-1b.2.: Access control procedures [Assignment: organization-defined frequency].