Navigate

CCI-000916

CCI-000916 Definition

Authorize physical access to the facility where the system resides based on position or role.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if physical access to the facility where the system resides is authorized based on position or role.

Validation Procedures

Examine: [SELECT FROM: Physical and environmental protection policy; procedures addressing physical access authorizations; physical access control logs or records; list of positions/roles and corresponding physical access authorizations; system entry and exit points; system security plan; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel with physical access authorization responsibilities; organizational personnel with physical access to system facility; organizational personnel with information security responsibilities]. Test: [SELECT FROM: Organizational processes for physical access authorizations; mechanisms supporting and/or implementing physical access authorizations].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000916.

Control	Description
PE-2(1)	Authorize physical access to the facility where the system resides based on position or role.