CCI-003054
CCI-003054 Definition
The organization^s security plan for the information system describes the operational environment for the information system and relationships with, or connections to, other information systems.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
The organization being inspected/assessed describes within the security plan the operational environment for the information system and relationships with or connections to other information systems.
Validation Procedures
The organization conducting the inspection/assessment obtains and examines the security plan to ensure the organization being inspected/assessed describes within the security plan the operational environment for the information system and relationships with or connections to other information systems.
Compelling Evidence
1.) System security plan (SSP).