Navigate

CCI-002806

CCI-002806 Definition

Respond to information spills by alerting organization-defined personnel or roles of the information spill using a method of communication not associated with the spill.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002806.

Control	Description
IR-9	The organization responds to information spills by: a: Identifying the specific information involved in the information system contamination; b: Alerting [one of ] of the information spill using a method of communication not associated with the spill; c: Isolating the contaminated information system or system component; d: Eradicating the information from the contaminated information system or component; e: Identifying other information systems or system components that may have been subsequently contaminated; and f: Performing other [one of ].

Control

Description

IR-9

The organization responds to information spills by:

a: Identifying the specific information involved in the information system contamination;

b: Alerting [one of ] of the information spill using a method of communication not associated with the spill;

c: Isolating the contaminated information system or system component;

d: Eradicating the information from the contaminated information system or component;

e: Identifying other information systems or system components that may have been subsequently contaminated; and

f: Performing other [one of ].