CCI-000227
CCI-000227 Definition
Develop a comprehensive strategy to manage security risk to organizational operations and assets, individuals, other organizations, and the Nation associated with the operation and use of information systems.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy. DoD components are automatically compliant with this CCI because they are covered by the DoD Risk Management Framework (DoDI 8510.01).
Validation Procedures
DoD Risk Management Framework meets the requirement for a comprehensive organizational risk strategy. DoD components are automatically compliant with this CCI because they are covered by DoD Risk Management Framework (DoDI 8510.01).
Compelling Evidence
Automatically compliant per DoDI 8510.01.