An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
94/172
)
CCIs
Number
Definition
Status
Related
CCI-002821
Defines the controls to be employed for personnel exposed to information not within assigned access authorizations.
Draft
IR-9(4)
CCI-002822
The organization establishes an integrated team of forensic/malicious code analysts, tool developers, and real-time operations personnel.
Draft
IR-10
CCI-002823
Defines the controls to be implemented to protect the system memory from unauthorized code execution.
Draft
SI-16
CCI-002824
Implement organization-defined controls to protect the system memory from unauthorized code execution.
Draft
SI-16
CCI-002825
Defines the personnel or roles to whom the organizational-level; mission/business process-level; and/or system-level contingency planning policy is to be disseminated.
Draft
CP-1
CCI-002826
Defines personnel or roles to whom the contingency planning procedures are disseminated.
Draft
CP-1
CCI-002827
Coordinate the contingency plan with the contingency plans of external service providers to ensure that contingency requirements can be satisfied.
Draft
CP-2(7)
CCI-002828
Identify critical system assets supporting all or essential mission functions.
Draft
CP-2(8)
CCI-002829
Identify critical system assets supporting all or essential business functions.
Draft
CP-2(8)
CCI-002830
Defines the personnel or roles who review and approve the contingency plan for the system.
Draft
CP-2
CCI-002831
Defines a list of key contingency personnel (identified by name and/or by role) and organizational elements to whom contingency plan changes are to be communicated.
Draft
CP-2
CCI-002832
Protects the contingency plan from unauthorized disclosure and modification.
Draft
CP-2
CCI-002833
Defines the time period that contingency training is to be provided to system users consistent with assigned roles and responsibilities within assuming a contingency role or responsibility.
Draft
CP-3
CCI-002834
Provide contingency training to system users consistent with assigned roles and responsibilities when required by system changes.
Draft
CP-3
CCI-002835
Test the contingency plan at the alternate processing site to evaluate the capabilities of the alternate processing site to support contingency operations.
Draft
CP-4(2)
CCI-002836
Ensure that the alternate storage site provides security controls equivalent to that of the primary site.
Draft
CP-6
CCI-002837
Plan for circumstances that preclude returning to the primary processing site.
Draft
CP-7(6)
CCI-002838
Prepare for circumstances that preclude returning to the primary processing site.
Draft
CP-7(6)
CCI-002839
Defines system operations that are permitted to transfer and resume at an alternate processing site for essential missions/business functions when the primary processing capabilities are unavailable.
Draft
CP-7
CCI-002840
Defines the system operations to be resumed for essential mission functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.
Draft
CP-8
CCI-002841
Defines the system operations to be resumed for essential business functions within the organization-defined time period when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.
Draft
CP-8
CCI-002842
Review provider contingency plans to ensure that the plans meet organizational contingency requirements.
Draft
CP-8(4)
CCI-002843
Defines the frequency with which to obtain evidence of contingency testing by providers.
Draft
CP-8(4)
CCI-002844
Defines the frequency with which to obtain evidence of contingency training by providers.
Draft
CP-8(4)
CCI-002845
Obtain evidence of contingency testing by providers in accordance with organization-defined frequency.
Draft
CP-8(4)
CCI-002846
Obtain evidence of contingency training by providers in accordance with organization-defined frequency.
Draft
CP-8(4)
CCI-002847
Defines the frequency with which to test alternate telecommunication services.
Draft
CP-8(5)
CCI-002848
Test alternate telecommunication services per organization-defined frequency.
Draft
CP-8(5)
CCI-002849
Defines critical system software and other security-related information, of which backup copies must be stored in a separate facility or in a fire-rated container.
Draft
CP-9(3)
CCI-002850
Store backup copies of organization-defined critical system software and other security-related information in a separate facility or in a fire-rated container that is not collocated with the operational system.
Draft
CP-9(3)
Prev
1...
90
91
92
93
94
95
96
97
98
...172
Next