An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
34/172
)
CCIs
Number
Definition
Status
Related
CCI-000991
Position system components within the facility to minimize the opportunity for unauthorized access.
Draft
PE-18
CCI-000992
The organization plans the location or site of the facility where the information system resides with regard to physical and environmental hazards, and for existing facilities, considers the physical and environmental hazards in its risk mitigation strategy.
Draft
CCI-000993
Protect the system from information leakage due to electromagnetic signals emanations.
Draft
PE-19
CCI-000994
The organization ensures that information system components, associated data communications, and networks are protected in accordance with national emissions and TEMPEST policies and procedures based on the security category or classification of the information.
Draft
PE-19(1)
CCI-000995
Develop and document an organization-level; mission/business process-level; and/or system-level media protection policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.
Draft
MP-1
CCI-000996
Disseminates a media protection policy to organization-defined personnel or roles.
Draft
MP-1
CCI-000997
Review and update the current media protection policy in accordance with organization-defined frequency.
Draft
MP-1
CCI-000998
Defines a frequency for reviewing and updating the current media protection policy.
Draft
MP-1
CCI-000999
Develop and document procedures to facilitate the implementation of the media protection policy and associated media protection controls.
Draft
MP-1
CCI-001000
Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the media protection policy and associated media protection controls.
Draft
MP-1
CCI-001001
Review and update the current media protection procedures in accordance with organization-defined frequency.
Draft
MP-1
CCI-001002
Defines a frequency for reviewing and updating the current media protection procedures.
Draft
MP-1
CCI-001003
Restrict access to organization-defined types of digital and/or non-digital media to organization-defined personnel or roles.
Draft
MP-2
CCI-001004
Defines types of digital and/or non-digital media for which the organization restricts access.
Draft
MP-2
CCI-001005
Defines personnel or roles from which to restrict access to organization-defined types of digital and/or non-digital media.
Draft
MP-2
CCI-001006
The organization defines security measures for restricting access to media.
Draft
CCI-001007
Restrict access to media storage areas using organization-defined automated mechanisms.
Draft
MP-4(2)
CCI-001008
Log access attempts and access granted using organization-defined automated mechanisms.
Draft
MP-4(2)
CCI-001009
The information system uses cryptographic mechanisms to protect and restrict access to information on portable digital media.
Draft
CCI-001010
Mark system media indicating the distribution limitations, handling caveats, and applicable security markings (if any) of the information.
Draft
MP-3
CCI-001011
Exempt organization-defined types of system media from marking as long as the media remain within organization-defined controlled areas.
Draft
MP-3
CCI-001012
Defines types of system media to exempt from marking as long as the media remain within organization-defined controlled areas.
Draft
MP-3
CCI-001013
Defines controlled areas where organization-defined types of system media are exempt from being marked.
Draft
MP-3
CCI-001014
The organization physically controls and securely stores organization-defined types of digital and/or non-digital media within organization-defined controlled areas.
Draft
MP-4
CCI-001015
Defines types of digital and/or non-digital media to physically control and securely store within organization-defined controlled areas.
Draft
MP-4
CCI-001016
Defines controlled areas where organization-defined types of digital and/or non-digital media are physically controlled and securely stored.
Draft
MP-4
CCI-001017
The organization defines security measures for securing media storage.
Draft
CCI-001018
The organization protects information system media until the media are destroyed or sanitized using approved equipment, techniques, and procedures.
Draft
MP-4
CCI-001019
The organization employs cryptographic mechanisms to protect information in storage.
Draft
CCI-001020
The organization protects and controls organization-defined types of information system media during transport outside of controlled areas using organization-defined security safeguards.
Draft
MP-5
Prev
1...
30
31
32
33
34
35
36
37
38
...172
Next