Navigate

CCI-002150

CCI-002150 Definition

Defines the time period within which the accounts of users posing a significant risk are to be disabled after discovery of the risk.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if accounts of individuals are disabled within [AC-02(13)_ODP[01]; time period within which to disable accounts of individuals who are discovered to pose significant risk is defined] of discovery of [AC-02(13)_ODP[02]; significant risks leading to disabling accounts are defined].

Validation Procedures

Examine: [SELECT FROM: Access control policy; procedures addressing account management; system design documentation; system configuration settings and associated documentation; system-generated list of disabled accounts; list of user activities posing significant organizational risk; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel with account management responsibilities; system/network administrators; organizational personnel with information security responsibilities]. Test: [SELECT FROM: Mechanisms implementing account management functions].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002150.

Control	Description
AC-2(13)	Disable accounts of individuals within [time period within which to disable accounts of individuals who are discovered to pose significant risk is defined;] of discovery of [significant risks leading to disabling accounts are defined;].