An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
156/172
)
CCIs
Number
Definition
Status
Related
CCI-004682
Control the use of live data in preproduction environments for the system, system component, or system service.
Draft
CCI-004683
Protect preproduction environments for the system, system component, or system service at the same impact or classification level as any live data in use within the preproduction environments.
Draft
CCI-004684
Plan for a technology refresh schedule to support the system throughout the system development life cycle.
Draft
CCI-004685
Implement technology refresh schedule to support the system throughout the system development life cycle.
Draft
CCI-004686
Defines the organization-defined contract language for including the requirements, descriptions, and criteria in the acquisition contract for the system, system component, or system service.
Draft
CCI-004687
Include the privacy functional requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004688
Include the privacy assurance requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004689
Include the controls needed to satisfy security requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004690
Include the controls needed to satisfy privacy requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004691
Include the privacy documentation requirements, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004692
Include the requirements for protecting security documentation, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Deprecated
CCI-004693
Include the requirements for protecting privacy documentation, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004694
Include the allocation of responsibility or identification of parties responsible for information security, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004695
Include the allocation of responsibility or identification of parties responsible for information privacy, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004696
Include the allocation of responsibility or identification of parties responsible for supply chain risk management, explicitly or by reference, using standardized contract language; and/or organization-defined contract language in the acquisition contract for the information system, system component, or information system service.
Draft
CCI-004697
Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined systems engineering methods.
Draft
CCI-004698
Defines the systems engineering methods for demonstrating the use of a system development life cycle process.
Draft
CCI-004699
Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined system security engineering methods and/or privacy engineering methods.
Draft
CCI-004700
Defines the system security engineering methods and/or privacy engineering methods for demonstrating the use of a system development life cycle process.
Draft
CCI-004701
Require the developer of the system, system component, or system service to demonstrate the use of a system development life cycle process that includes organization-defined software development methods; testing; evaluation, assessment, verification, and validation methods, and quality control processes.
Draft
CCI-004702
Defines the software development methods; testing; evaluation, assessment, verification, and validation methods, and quality control processes for demonstrating the use of a system development life cycle process.
Draft
CCI-004703
Include organization-defined Privacy Act requirements in the acquisition contract for the operation of a system of records on behalf of an organization to accomplish an organizational mission or function.
Draft
CCI-004704
Defines the Privacy Act requirements to include in the acquisition contract.
Draft
CCI-004705
Include organizational data ownership requirements in the acquisition contract.
Draft
CCI-004706
Require all data to be removed from the contractor's system and returned to the organization within an organization-defined time frame.
Draft
CCI-004707
Defines the time frame for returning the data removed from the contractor's system.
Draft
CCI-004708
Obtain or develop administrator documentation for the system, system component, or system services that describes effective use and maintenance of privacy functions and mechanisms.
Draft
CCI-004709
Obtain or develop user documentation for the system, system component, or system service that describes user-accessible privacy functions and mechanisms and how to effectively use those functions and mechanisms.
Draft
CCI-004710
Obtain or develop user documentation for the system, system component, or system service that describes methods for user interaction which enables individuals to protect individual privacy.
Draft
CCI-004711
Obtain or develop user documentation for the system, system component, or system service that describes user responsibilities in maintaining the privacy of individuals.
Draft
Prev
1...
152
153
154
155
156
157
158
159
160
...172
Next