An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
155/172
)
CCIs
Number
Definition
Status
Related
CCI-004652
Establish and maintain a cyber threat hunting capability to detect, track, and disrupt threats that evade existing controls.
Draft
RA-10
CCI-004653
Employ the threat hunting capability on an organization-defined frequency.
Draft
RA-10
CCI-004654
Defines the frequency for employing the threat hunting capability.
Draft
RA-10
CCI-004655
Develop and document an organization-level; mission/business process-level; and/or system-level system and services acquisition policy that is consistent with applicable laws, Executive Orders, directives, regulations, polices, standards, and guidelines.
Draft
SA-1
CCI-004656
Designate an organization-defined official to manage development and documentation of the system and services acquisition policy.
Draft
SA-1
CCI-004657
Designate an organization-defined official to manage dissemination of the system and services acquisition policy.
Draft
SA-1
CCI-004658
Defines the official designated to manage development and documentation of the system and services acquisition policy.
Draft
SA-1
CCI-004659
Designate an organization-defined official to manage the development and documentation of the system and services acquisition procedures.
Draft
SA-1
CCI-004660
Designate an organization-defined official to manage the dissemination of the system and services acquisition procedures.
Draft
SA-1
CCI-004661
Defines the official designated to manage the system and services acquisition procedures.
Draft
SA-1
CCI-004662
Review and update the current system and services acquisition policy following organization-defined events.
Draft
SA-1
CCI-004663
Defines the events following reviewing and updating the current system and services acquisition policy.
Draft
SA-1
CCI-004664
Review and update the current system and services acquisition procedures following organization-defined events.
Draft
SA-1
CCI-004665
Defines the events following reviewing and updating the current system and services acquisition procedures.
Draft
SA-1
CCI-004666
Determine the high-level information privacy requirements for the system or system service in mission and business process planning.
Draft
SA-2
CCI-004667
Establish a discrete line item for information privacy in organizational programming documentation.
Draft
SA-2
CCI-004668
Establish a discrete line item for information privacy in organizational budgeting documentation.
Draft
SA-2
CCI-004669
Acquire the system using an organization-defined system development life cycle that incorporates information security considerations.
Draft
SA-3
CCI-004670
Acquire the system using an organization-defined system development life cycle that incorporates information privacy considerations.
Draft
SA-3
CCI-004671
Develop the system using an organization-defined system development life cycle that incorporates information security considerations.
Draft
SA-3
CCI-004672
Develop the system using an organization-defined system development life cycle that incorporates information privacy considerations.
Draft
SA-3
CCI-004673
Manage the system using an organization-defined system development life cycle that incorporates information privacy considerations.
Draft
SA-3
CCI-004674
Defines a system development life cycle that is used to develop the system.
Draft
SA-3
CCI-004675
Defines a system development life cycle that is used to acquire the system.
Draft
SA-3
CCI-004676
Define and document information system privacy roles and responsibilities throughout the system development life cycle.
Draft
SA-3
CCI-004677
Identify individuals having information system privacy roles and responsibilities.
Draft
SA-3
CCI-004678
Integrate the organizational information privacy risk management process into system development life cycle activities.
Draft
SA-3
CCI-004679
Protect system preproduction environments commensurate with risk throughout the system development life cycle for the system, system component, or system service.
Draft
SA-3(1)
CCI-004680
Approve the use of live data in preproduction environments for the system, system component, or system service.
Draft
SA-3(2)
CCI-004681
Document the use of live data in preproduction environments for the system, system component, or system service.
Draft
SA-3(2)
Prev
1...
151
152
153
154
155
156
157
158
159
...172
Next