Navigate

CCI-002214

CCI-002214 Definition

The organization employs organization-defined solutions in approved configurations to control the flow of organization-defined information across security domains.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed documents and implements solutions defined in AC-4 (20), CCI 2212 in approved configurations to control the flow of information defined in AC-4 (20), CCI 2213 across security domains.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed employs solutions defined in AC-4 (20), CCI 2212 in approved configurations to control the flow of information defined in AC-4 (20), CCI 2213 across security domains.

Compelling Evidence

1.) Signed and dated documentation that defines the mechanisms and/or techniques to be used to logically or physically separate information flows.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002214.

Control	Description
AC-4 (20)	The organization employs [Assignment: organization-defined solutions in approved configurations] to control the flow of [Assignment: organization-defined information] across security domains.