An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
132/172
)
CCIs
Number
Definition
Status
Related
CCI-003962
Develop and document an inventory of system components that accurately reflects the system.
Draft
CCI-003963
Develop and document an inventory of system components that includes all components within the system.
Draft
CCI-003964
Develop and document an inventory of system components that does not include duplicate accounting of components or components assigned to any other system.
Draft
CCI-003965
Develop and document an inventory of system components that is at the level of granularity deemed necessary for tracking.
Draft
CCI-003966
Develop and document an inventory of system components that is at the level of granularity deemed necessary for reporting.
Draft
CCI-003967
Develop and document an inventory of system components that includes organization-defined information deemed necessary to achieve effective system component accountability.
Draft
CCI-003968
Defines the automated mechanisms for maintaining the currency, completeness, accuracy, and availability of the inventory of the system components.
Draft
CCI-003969
Defines the automated mechanisms for detecting the presence of unauthorized hardware, software, and firmware components within the system.
Draft
CCI-003970
Defines the automated mechanisms for supporting the tracking of system components by geographic location.
Draft
CCI-003971
Develop and document a configuration management plan for the system that addresses roles, responsibilities, and configuration management processes.
Draft
CCI-003972
Develop and document a configuration management plan for the system that addresses roles, responsibilities, and configuration management procedures.
Draft
CCI-003973
Develop and document a configuration management plan for the system that establishes a process for identifying configuration items throughout the system development life cycle.
Draft
CCI-003974
Develop and document a configuration management plan for the system that establishes a process for managing the configuration of the configuration items.
Draft
CCI-003975
Develop and document a configuration management plan for the system that defines the configuration items for the system.
Draft
CCI-003976
Develop and document a configuration management plan for the system that places the configuration items under configuration management.
Draft
CCI-003977
Develop and document a configuration management plan for the system that is reviewed and approved by organization-defined personnel or roles.
Draft
CCI-003978
Defines the personnel or roles for those who review and approve the configuration management plan.
Draft
CCI-003979
Implement a configuration management plan for the system that is reviewed and approved by organization-defined personnel or roles.
Draft
CCI-003980
Allow user installation of software only with explicit privileged status.
Draft
CCI-003981
Enforce and monitor compliance with software installation policies using organization-defined automated mechanisms.
Draft
CCI-003982
Identify and document the location of the organization-defined information on which the information is processed and stored.
Draft
CCI-003983
Identify and document the specific system components on which the organization-defined information is processed and stored.
Draft
CCI-003984
Defines the information on which the location and specific system components are processed and stored.
Draft
CCI-003985
Identify and document the users who have access to the system where the information is processed and stored.
Draft
CCI-003986
Identify and document the users who have access to the system components where the information is processed and stored.
Draft
CCI-003987
Document changes to the location (i.e., system or system components) where the information is processed and stored.
Draft
CCI-003988
Use automated tools to identify organization-defined information by information type on organization-defined components to ensure adequate controls are in place to protect organizational information.
Draft
CCI-003989
Defines the information by information type for identifying automated tools.
Draft
CCI-003990
Defines the system components used to ensure controls are in place to protect organizational information and individual privacy.
Draft
CCI-003991
Develop and document a map of system data actions.
Draft
Prev
1...
128
129
130
131
132
133
134
135
136
...172
Next