Navigate

CCI-002338

CCI-002338 Definition

Restrict the use of non-organizationally owned systems or system components to process, store, or transmit organizational information using organization-defined restrictions.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002338.

Control	Description
AC-20(3)	The organization [one of "restricts"/"prohibits"] the use of non-organizationally owned information systems, system components, or devices to process, store, or transmit organizational information.