CCI-000624

The organization requires in acquisition documents that vendors/contractors provide information describing the design details of the security controls to be employed within the information system, information system components, or information system services (including functional interfaces among control components) in sufficient detail to permit analysis and testing of the controls.

Implementation Guidance

Validation Procedures

The controls below (if any) were marked by NIST as being related to CCI-000624.