Navigate

CCI-002825

CCI-002825 Definition

The organization defines personnel or roles to whom the contingency planning policy is to be disseminated.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.

Validation Procedures

The organization being inspected/assessed is automatically compliant with this CCI because they are covered at the DoD level. DoD has defined the personnel or roles as all stakeholders identified in the contingency plan.

Compelling Evidence

Automatically Compliant

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002825.

Control	Description
CP-1	The organization: CP-1a.: Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]: CP-1a.1.: A contingency planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and CP-1a.2.: Procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls; and CP-1b.: Reviews and updates the current: CP-1b.1.: Contingency planning policy [Assignment: organization-defined frequency]; and CP-1b.2.: Contingency planning procedures [Assignment: organization-defined frequency].

Control

Description

CP-1

The organization:

CP-1a.: Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]:
- CP-1a.1.: A contingency planning policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
- CP-1a.2.: Procedures to facilitate the implementation of the contingency planning policy and associated contingency planning controls; and

CP-1b.: Reviews and updates the current:
- CP-1b.1.: Contingency planning policy [Assignment: organization-defined frequency]; and
- CP-1b.2.: Contingency planning procedures [Assignment: organization-defined frequency].