An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
142/172
)
CCIs
Number
Definition
Status
Related
CCI-004262
Determine and document the organization-defined alternate work sites allowed for use by employees.
Draft
CCI-004263
Provide a means for employees to communicate with information privacy personnel in case of incidents.
Draft
CCI-004264
Protect system components, associated data communications, and networks in accordance with national Emissions Security policies based on the security category or classification of the information.
Draft
CCI-004265
Protect system components, associated data communications, and networks in accordance with national Emissions Security procedures based on the security category or classification of the information.
Draft
CCI-004266
Employ organization-defined protective measures against electromagnetic pulse damage for organization-defined systems and system components.
Draft
CCI-004267
Defines the protective measure employed against electromagnetic pulse damage for organization-defined systems and system components.
Draft
CCI-004268
Defines the systems and system components in which organization-defined protective measures are employed against electromagnetic pulse damage.
Draft
CCI-004269
Mark organization-defined system hardware components indicating the impact or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.
Draft
CCI-004270
Defines the system hardware components which are marked, indicating the impact or classification level of the information permitted to be processed, stored, or transmitted by the hardware component.
Draft
CCI-004271
Plan the location or site of the facility where the system resides considering physical and environmental hazards.
Draft
CCI-004272
For existing facilities, consider the physical and environmental hazards in the organizational risk management strategy.
Draft
CCI-004273
Develop and document an organization-level; mission/business process-level; and or system-level planning policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.
Draft
CCI-004274
Designate an organization-defined official to manage the development and documentation of the planning policy and procedures.
Draft
CCI-004275
Designate an organization-defined official to manage the dissemination of the planning policy and procedures.
Draft
CCI-004276
Review and update the current planning policy following organization-defined events.
Draft
CCI-004277
Review and update the current planning procedures following organization-defined events.
Draft
CCI-004278
Develop security and privacy plans for the system that identify the individuals that fulfill system roles and responsibilities.
Draft
CCI-004279
Develop security and privacy plans for the system that identify the information types processed, stored, and transmitted by the system.
Draft
CCI-004280
Develop security and privacy plans for the system that describe any specific threats to the system that are of concern to the organization.
Draft
CCI-004281
Develop security and privacy plans for the system that provide the results of a privacy risk assessment for the systems processing personally identifiable information.
Draft
CCI-004282
Develop security and privacy plans for the system that include risk determinations for security and privacy architecture and design decisions.
Draft
CCI-004283
Develop security and privacy plans for the system that include security- and privacy-related activities affecting the system that require planning and coordination with organization-defined individuals or groups.
Draft
CCI-004284
Establish the rules describing the responsibilities and expected behavior, for security, for individuals requiring access to the system.
Draft
CCI-004285
Establish the rules describing the responsibilities and expected behavior, for privacy, for individuals requiring access to the system.
Draft
CCI-004286
Provide the rules describing the responsibilities and expected behavior, for information and system usage, for individuals requiring access to the system.
Draft
CCI-004287
Provide the rules describing the responsibilities and expected behavior, for security, for individuals requiring access to the system.
Draft
CCI-004288
Provide the rules describing the responsibilities and expected behavior, for privacy, for individuals requiring access to the system.
Draft
CCI-004289
Defines the frequency individuals are required to read and re-acknowledge the rules of behavior whenever the rules are revised or updated.
Draft
CCI-004290
Include in the rules of behavior, restrictions on use of organization-provided identifiers (e.g., email addresses) and authentication secrets (e.g., passwords) for creating accounts on external sites/applications.
Draft
CCI-004291
Develop a security Concept of Operations (CONOPS) for the system describing how the organization intends to operate the system from the perspective of information privacy.
Draft
Prev
1...
138
139
140
141
142
143
144
145
146
...172
Next