CCI-002999
CCI-002999 Definition
Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are maintained.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
The organization being inspected/assessed documents and implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are maintained.
Validation Procedures
The organization conducting the inspection/assessment obtains and examines the documented process to ensure the organization being inspected/assessed implements a process for ensuring that organizational plans for conducting security testing activities associated with organizational information systems are maintained.
Compelling Evidence
1.) Signed and dated process maintenance documentation for conducting security testing activities associated with organizational information systems.