CCI-002414

The organization defines the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components.

Implementation Guidance

The organization being inspected/assessed defines and documents the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components. DoD has determined the missions and/or business functions are not appropriate to define at the Enterprise level.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented missions and/or business functions to ensure the organization being inspected/assessed defines the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components. DoD has determined the missions and/or business functions are not appropriate to define at the Enterprise level.

Compelling Evidence

1.) Signed and dated document that defines the missions and/or business functions for which boundary protection mechanisms will be employed to separate the supporting organization-defined information system components.

The controls below (if any) were marked by NIST as being related to CCI-002414.