An error occurred:

© 2025 Xylok, LLC

Version: features-advanced-collector-898c2c - rmfrev4

Navigate

CCI-000890

CCI-000890 Definition

Establish a process for maintenance personnel authorization.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000890.

Control

Description

The organization:

a: Establishes a process for maintenance personnel authorization and maintains a list of authorized maintenance organizations or personnel;

b: Ensures that non-escorted personnel performing maintenance on the information system have required access authorizations; and

c: Designates organizational personnel with required access authorizations and technical competence to supervise the maintenance activities of personnel who do not possess the required access authorizations.