An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
32/172
)
CCIs
Number
Definition
Status
Related
CCI-000931
Use lockable physical casings to protect organization-defined system components from unauthorized physical access.
Draft
PE-3(4)
CCI-000932
Defines system components to be protected from unauthorized physical access using lockable physical casings.
Draft
PE-3(4)
CCI-000933
Employ organization-defined anti-tamper technologies to deter and/or prevent physical tampering or alteration of organization-defined hardware components within the system.
Draft
PE-3(5)
CCI-000934
The organization employs a penetration testing process that includes unannounced attempts to bypass or circumvent security controls associated with physical access points to the facility on an organization-defined frequency.
Draft
PE-3(6)
CCI-000935
The organization defines the frequency of unannounced attempts to be included in a penetration testing process to bypass or circumvent security controls associated with physical access points to the facility.
Draft
PE-3(6)
CCI-000936
Control physical access to organization-defined system distribution and transmission lines within organizational facilities using organization-defined security controls.
Draft
PE-4
CCI-000937
Control physical access to output from organization-defined output devices to prevent unauthorized individuals from obtaining the output.
Draft
PE-5
CCI-000938
The organization monitors physical access to the information system to detect and respond to physical security incidents.
Draft
CCI-000939
Review physical access logs in accordance with organization-defined frequency.
Draft
PE-6
CCI-000940
Defines a frequency for reviewing physical access logs.
Draft
PE-6
CCI-000941
Coordinate results of reviews and investigations with the organization's incident response capability.
Draft
PE-6
CCI-000942
Monitor physical access to the facility where the system resides using physical intrusion alarms and surveillance equipment.
Draft
PE-6(1)
CCI-000943
The organization employs automated mechanisms to recognize potential intrusions and initiate designated response actions.
Draft
CCI-000944
The organization controls physical access to the information system by authenticating visitors before authorizing access to the facility where the information system resides other than areas designated as publicly accessible.
Draft
CCI-000945
The organization escorts visitors and monitors visitor activity, when required.
Draft
CCI-000946
The organization requires two forms of identification for visitor access to the facility.
Draft
CCI-000947
Maintain visitor access records to the facility where the system resides for an organization-defined time period.
Draft
PE-8
CCI-000948
Review visitor access records in accordance with organization-defined frequency.
Draft
PE-8
CCI-000949
Defines the frequency with which to review the visitor access records for the facility where the system resides.
Draft
PE-8
CCI-000950
Maintain and review visitor access records using organization-defined automated mechanisms.
Draft
PE-8(1)
CCI-000951
The organization maintains a record of all physical access, both visitor and authorized individuals.
Draft
CCI-000952
Protect power equipment and power cabling for the system from damage and destruction.
Draft
PE-9
CCI-000953
The organization employs redundant and parallel power cabling paths.
Draft
CCI-000954
Employ automatic voltage controls for organization-defined critical system components.
Draft
PE-9(2)
CCI-000955
Defines critical system components that require automatic voltage controls.
Draft
PE-9(2)
CCI-000956
Provides the capability of shutting off power to the organization-defined system or individual system components in emergency situations.
Draft
PE-10
CCI-000957
Place emergency shutoff switches or devices in an organization-defined location by system or system component to facilitate access for authorized personnel.
Draft
PE-10
CCI-000958
Defines a location for emergency shutoff switches or devices by system or system component.
Draft
PE-10
CCI-000959
Protect emergency power shutoff capability from unauthorized activation.
Draft
PE-10
CCI-000960
The organization provides a short-term uninterruptible power supply to facilitate an orderly shutdown of the information system in the event of a primary power source loss.
Draft
Prev
1...
28
29
30
31
32
33
34
35
36
...172
Next