Navigate

CCI-002996

CCI-002996 Definition

Implement an insider threat program that includes a cross-discipline insider threat incident handling team.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if an insider threat program that includes a cross-discipline insider threat incident handling team is implemented.

Validation Procedures

Interview: [SELECT FROM: Organizational personnel with information security and privacy program planning and plan implementation responsibilities; organizational personnel responsible for the insider threat program; members of the cross-discipline insider threat incident handling team; legal counsel; organizational personnel with information security and privacy responsibilities]. Test: [SELECT FROM: Organizational processes for implementing the insider threat program and the cross-discipline insider threat incident handling team; mechanisms supporting and/or implementing the insider threat program and the cross-discipline insider threat incident handling team].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-002996.

Control	Description
PM-12	Implement an insider threat program that includes a cross-discipline insider threat incident handling team.