Navigate

CCI-000229

CCI-000229 Definition

The organization documents the security state of organizational information systems and the environments in which those systems operate through security authorization processes.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000229.

Control	Description
PM-10	The organization: a: Manages (i.e., documents, tracks, and reports) the security state of organizational information systems and the environments in which those systems operate through security authorization processes; b: Designates individuals to fulfill specific roles and responsibilities within the organizational risk management process; and c: Fully integrates the security authorization processes into an organization-wide risk management program.

Control

Description

PM-10

The organization:

a: Manages (i.e., documents, tracks, and reports) the security state of organizational information systems and the environments in which those systems operate through security authorization processes;

b: Designates individuals to fulfill specific roles and responsibilities within the organizational risk management process; and

c: Fully integrates the security authorization processes into an organization-wide risk management program.