An error occurred:

CCIs

Number Definition Status Related
CCI-003602 Develop and document an organization-level; mission/business process-level; and/or system-level access control policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance. Draft
CCI-003603 Disseminate the organization-level; mission/business process-level; and/or system-level access control policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines to organization-defined personnel or roles. Draft
CCI-003604 Develop and document procedures to facilitate the implementation of the organization-level; mission/business process-level; and/or system-level access control policy and the associated access control. Draft
CCI-003605 Designate an organization-defined official to manage the development and documentation of the access control policy and procedures. Draft
CCI-003606 Designate an organization-defined official to manage the dissemination of the access control policy and procedures. Draft
CCI-003607 Defines the official designated to manage the development, documentation, and dissemination of the access control policy and procedures. Draft
CCI-003608 Review and update the current access control policy following organization-defined events. Draft
CCI-003609 Defines the events following reviewing and updating the current access control policy. Draft
CCI-003610 Review and update the current access control procedures following organization-defined events. Draft
CCI-003611 Defines the events following reviewing and updating the current access control procedures. Draft
CCI-003612 Define and document the types of accounts allowed and specifically prohibited for use within the system. Draft
CCI-003613 Require organization-defined prerequisites and criteria for group membership. Draft
CCI-003614 Require organization-defined prerequisites and criteria for role membership. Draft
CCI-003615 Defines the prerequisites and criteria for group and role membership. Draft
CCI-003616 Defines the attributes (as required) for each account. Draft
CCI-003617 Create, enable, modify, disable, and remove system accounts in accordance with organization-defined policy. Draft
CCI-003618 Create, enable, modify, disable, and remove system accounts in accordance with organization-defined criteria. Draft
CCI-003619 Create, enable, modify, disable, and remove system accounts in accordance with organization-defined prerequisites. Draft
CCI-003620 Defines the policy to be employed when creating, enabling, modifying, disabling, and removing information system accounts. Draft
CCI-003621 Defines the prerequisites to be employed when creating, enabling, modifying, disabling, and removing information system accounts. Draft
CCI-003622 Defines the criteria to be employed when creating, enabling, modifying, disabling, and removing information system accounts. Draft
CCI-003623 Defines the personnel or roles of whom to notify when accounts are no longer required; when users are terminated or transferred; and when system usage or need-to-know changes for an individual. Draft
CCI-003624 Defines the time period of when to notify account managers for each situation. Draft
CCI-003625 Defines the attributes (as required) for authorizing access to the system. Draft
CCI-003626 Align account management processes with personnel termination and transfer processes. Draft
CCI-003627 Disable accounts when the accounts have expired. Draft
CCI-003628 Disable accounts when the accounts are no longer associated to a user. Draft
CCI-003629 Disable accounts when the accounts are in violation of organizational policy. Draft
CCI-003630 Monitor changes to roles or attributes. Draft
CCI-003631 Defines the system accounts that can be dynamically activated. Draft