An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2024
Xylok, LLC
Version: pp-server-fixes-6359-660a
Xylok
Home Menu
info@xylok.io
© 2024
Xylok, LLC
Version: pp-server-fixes-6359-660a
Open sidebar
Navigate
Top
Search
CCIs (
3551
)
Pages (
112/119
)
CCIs
Number
Definition
Status
Related
CCI-003378
The organization defines the actions the developer of the information system, system component, or information system service must take to ensure the required access authorizations are satisfied.
Draft
SA-21 (1)
CCI-003379
The organization requires the developer of the information system, system component, or information system service take organization-defined actions to ensure the required screening criteria are satisfied.
Draft
SA-21 (1)
CCI-003380
The organization requires the developer of the information system, system component, or information system service take organization-defined actions to ensure the required access authorizations are satisfied.
Draft
SA-21 (1)
CCI-003381
The organization defines additional personnel screening criteria that must be satisfied by the developer of an organization-defined information system, system component, or information system service.
Draft
SA-21
CCI-003382
The organization requires that the developer of an organization-defined information system, system component, or information system service satisfy organization-defined additional personnel screening criteria.
Draft
SA-21
CCI-003383
The organization defines the official government duties to be assigned to the developer of an organization-defined information system, system component, or information system service.
Draft
SA-21
CCI-003384
The organization defines the information system, system component, or information system service which requires the information system developer to have appropriate access authorizations and satisfy additional personnel screening criteria.
Draft
SA-21
CCI-003385
The organization requires that the developer of an organization-defined information system, system component, or information system service have appropriate access authorizations as determined by assigned organization-defined official government duties.
Draft
SA-21
CCI-003386
The organization defines the critical information system components to re-implement or custom develop.
Draft
SA-20
CCI-003387
The organization re-implements or custom develops organization-defined critical information system components.
Draft
SA-20
CCI-003388
The organization defines the frequency on which to scan for counterfeit information system components.
Draft
SA-19 (4)
CCI-003389
The organization scans for counterfeit information system components in accordance with organization-defined frequency.
Draft
SA-19 (4)
CCI-003390
The organization defines the techniques and methods used to dispose of information system components.
Draft
SA-19 (3)
CCI-003391
The organization disposes of information system components using organization-defined techniques and methods.
Draft
SA-19 (3)
CCI-003392
The organization determines and documents the legal authority that permits the collection of personally identifiable information (PII), either generally or in support of a specific program or information system need.
Draft
AP-1
CCI-003393
The organization determines and documents the legal authority that permits the use of personally identifiable information (PII), either generally or in support of a specific program or information system need.
Draft
AP-1
CCI-003394
The organization determines and documents the legal authority that permits the maintenance of personally identifiable information (PII), either generally or in support of a specific program or information system need.
Draft
AP-1
CCI-003395
The organization determines and documents the legal authority that permits the sharing of personally identifiable information (PII), either generally or in support of a specific program or information system need.
Draft
AP-1
CCI-003396
The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is collected.
Draft
AP-2
CCI-003397
The organization appoints a Senior Agency Official for Privacy (SAOP)/Chief Privacy Officer (CPO) accountable for developing, implementing, and maintaining an organization-wide governance and privacy program to ensure compliance with all applicable laws and regulations regarding the collection, use, maintenance, sharing, and disposal of personally identifiable information (PII) by programs and information systems.
Draft
AR-1
CCI-003398
The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is used.
Draft
AP-2
CCI-003399
The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is maintained.
Draft
AP-2
CCI-003400
The organization describes, in its privacy notices, the purpose(s) for which personally identifiable information (PII) is shared.
Draft
AP-2
CCI-003401
The organization monitors federal privacy laws and policy for changes that affect the privacy program.
Draft
AR-1
CCI-003402
The organization defines the allocation of budget resources sufficient to implement and operate the organization-wide privacy program.
Draft
AR-1
CCI-003403
The organization defines the allocation of staffing resources sufficient to implement and operate the organization-wide privacy program.
Draft
AR-1
CCI-003404
The organization allocates sufficient organization-defined budget resources to implement and operate the organization-wide privacy program.
Draft
AR-1
CCI-003405
The organization allocates sufficient organization-defined staffing resources to implement and operate the organization-wide privacy program.
Draft
AR-1
CCI-003406
The organization develops a strategic organizational privacy plan for implementing applicable privacy controls, policies, and procedures.
Draft
AR-1
CCI-003407
The organization develops operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
Prev
1...
108
109
110
111
112
113
114
115
116
...119
Next