An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
159/172
)
CCIs
Number
Definition
Status
Related
CCI-004772
Implement the security design principle of repeatable and documented procedures in organization-defined systems or system components.
Draft
CCI-004773
Defines the systems or system components which will implement the security design principle of repeatable and documented procedures.
Draft
CCI-004774
Implement the security design principle of procedural rigor in organization-defined systems or system components.
Draft
CCI-004775
Defines the systems or system components which will implement the security design principle of procedural rigor.
Draft
CCI-004776
Implement the security design principle of secure system modification in organization-defined systems or system components.
Draft
CCI-004777
Defines the systems or system components which will implement the security design principle of secure system modification.
Draft
CCI-004778
Implement the security design principle of sufficient documentation in organization-defined systems or system components.
Draft
CCI-004779
Defines the systems or system components which will implement the security design principle of sufficient documentation.
Draft
CCI-004780
Implement the privacy principle of minimization using organization-defined processes.
Draft
CCI-004781
Defines the processes for implementing the privacy principle of minimization.
Draft
CCI-004782
Require that providers of external system services comply with organizational privacy requirements.
Draft
CCI-004783
Require that providers of external system services employ organization-defined controls.
Draft
CCI-004784
Defines the controls for complying with organizational security and privacy requirements.
Draft
CCI-004785
Define and document organizational oversight with regard to external system services.
Draft
CCI-004786
Define and document user roles and responsibilities with regard to external system services.
Draft
CCI-004787
Establish trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.
Draft
CCI-004788
Document trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.
Draft
CCI-004789
Maintain trust relationships with external service providers based on organization-defined privacy requirements, properties, factors, or conditions defining acceptable trust relationships.
Draft
CCI-004790
Defines privacy requirements, properties, factors, or conditions defining acceptable trust relationships with external service providers.
Draft
CCI-004791
Maintain exclusive control of cryptographic keys for encrypted material stored or transmitted through an external system.
Draft
CCI-004792
Provide the capability to check the integrity of organizational information while it resides in the external system.
Draft
CCI-004793
Restrict the geographic location of information processing and data storage to facilities located within the legal jurisdictional boundary of the United States.
Draft
CCI-004794
Require the developer of the system, system component, or system service to document the potential privacy impacts of approved changes to the system, component, or service.
Draft
CCI-004795
Require organization-defined security and privacy representatives to be included in the organization-defined configuration change management and control process.
Draft
CCI-004796
Defines the security and privacy representatives to be included the organization-defined configuration change management and control process.
Draft
CCI-004797
Defines the configuration change management and control process required for the organization-defined security and privacy representatives.
Draft
CCI-004798
Require the developer of the system, system component, or system service, at all post-design phases of the system development life cycle, to develop a plan for ongoing privacy control assessment.
Draft
CCI-004799
Require the developer of the system, system component, or system service to implement a plan for ongoing privacy control assessment.
Draft
CCI-004800
Defines the frequency that the unit, integration, system, and/or regression testing/evaluation is performed at an organization-defined depth and coverage.
Draft
CCI-004801
Use the following contextual information.
Draft
Prev
1...
155
156
157
158
159
160
161
162
163
...172
Next