CCI-002415

Employ boundary protection mechanisms to isolate organization-defined system components supporting organization-defined missions and/or business functions.

Implementation Guidance

Determine if boundary protection mechanisms are employed to isolate [SC-07(21)_ODP[01]; system components to be isolated by boundary protection mechanisms are defined] supporting [SC-07(21)_ODP[02]; missions and/or business functions to be supported by system components isolated by boundary protection mechanisms are defined].

Validation Procedures

Examine: [SELECT FROM: System and communications protection policy; procedures addressing boundary protection; system design documentation; system hardware and software; enterprise architecture documentation; system architecture; system configuration settings and associated documentation; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: System/network administrators; organizational personnel with information security responsibilities; organizational personnel with boundary protection responsibilities]. Test: [SELECT FROM: Mechanisms supporting and/or implementing the capability to separate system components supporting organizational missions and/or business functions].

The controls below (if any) were marked by NIST as being related to CCI-002415.