An error occurred:

CCIs

Number Definition Status Related
CCI-004832 Require the developer of the system, system component, or system service to test an incident response plan. Draft
CCI-004833 Require the developer of the system or system component to archive the system or component to be released or delivered together with the corresponding evidence supporting the final privacy review. Draft
CCI-004834 Require the developer of the system or system component to minimize the use of personally identifiable information in development and test environments. Draft
CCI-004835 Require the developer of the system, system component, or system service to provide organization-defined training on the correct use and operation of the implemented privacy functions, controls, and/or mechanisms. Draft
CCI-004836 Defines the training the developer of the system, system component, or information system service is required to provide on the correct use and operation of the implemented privacy functions, controls, and/or mechanisms. Draft
CCI-004837 Require the developer of the system, system component, or system service to produce a privacy architecture. Draft
CCI-004838 Require the developer of the system, system component, or system service to produce a privacy architecture that is consistent with and supportive of the organization's privacy architecture which is established within and is an integrated part of the organization's enterprise architecture. Draft
CCI-004839 Require the developer of the system, system component, or system service to produce a privacy architecture that accurately and completely describes the required privacy functionality. Draft
CCI-004840 Require the developer of the system, system component, or system service to produce a privacy architecture that accurately and completely describes the allocation of privacy controls among physical and logical components. Draft
CCI-004841 Require the developer of the system, system component, or system service to produce a privacy architecture that expresses how individual privacy functions, mechanisms, and services work together to provide required privacy capabilities and a unified approach to protection. Draft
CCI-004842 Require the developer of the system, system component, or system to produce, as an integral part of the development process, a formal policy model describing the organization-defined elements of organizational privacy policy to be enforced. Draft
CCI-004843 Defines the elements of organizational privacy policy to be described in the formal policy model for enforcement on the system, system component, or system service. Draft
CCI-004844 Require the developer of the system, system component, or system service to prove that the formal policy model is internally consistent and sufficient to enforce the defined elements of the organizational privacy policy when implemented. Draft
CCI-004845 Design organization-defined critical systems or system components with coordinated behavior to implement organization-defined capabilities, by system or component. Draft
CCI-004846 Defines the critical systems or system components for implementing organization-defined capabilities, by system or component. Draft
CCI-004847 Defines the capabilities, by system or component, for designing organization-defined critical systems or system components. Draft
CCI-004848 Use different designs for organization-defined critical systems or system components to satisfy a common set of requirements or to provide equivalent functionality. Draft
CCI-004849 Defines the critical systems or system components for satisfying a common set of requirements or to provide equivalent functionality. Draft
CCI-004850 Employ design; modification; augmentation; and/or reconfiguration on organization-defined systems or system components supporting mission essential services or functions to increase the trustworthiness in those systems or components. Draft
CCI-004851 Defines the systems or system components for supporting mission essential services or functions. Draft
CCI-004852 Develop and document an organization-level; mission/business process-level; and/or system-level system and communications protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance. Draft
CCI-004853 Develop and document an organization-level; mission/business process-level; and/or system-level a system and communications protection policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines. Draft
CCI-004854 Develop and document system and communications protection procedures to facilitate the implementation of the system and communications protection policy and associated system and communications protection controls. Draft
CCI-004855 Designate an organization-defined official to manage the development and documentation of the system and communications protection policy. Draft
CCI-004856 Designate an organization-defined official to manage the development and documentation of the system and communications protection procedures. Draft
CCI-004857 Designate an organization-defined official to manage the dissemination of the system and communications protection policy. Draft
CCI-004858 Designate an organization-defined official to manage the dissemination of the system and communications protection procedures. Draft
CCI-004859 Defines the official to manage the development, documentation, and dissemination of the system and communications protection policy. Draft
CCI-004860 Defines the official to manage the development, documentation, and dissemination of the system and communications protection procedures. Draft
CCI-004861 Review and update the current system and communications protection policy following organization-defined events. Draft