An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.07.1-5f5778 - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
99/172
)
CCIs
Number
Definition
Status
Related
CCI-002971
Defines the time period within which to resolve deficiencies identified during facility fire protection inspections.
Draft
PE-13(4)
CCI-002972
The organization employs automated mechanisms to detect the presence of water in the vicinity of the information system and alerts organization-defined personnel or roles.
Draft
PE-15(1)
CCI-002973
Defines the personnel or roles to be alerted when automated mechanisms detect the presence of water near the system.
Draft
PE-15(1)
CCI-002974
Defines types of system components to authorize and control entering and exiting the facility and to maintain records.
Draft
PE-16
CCI-002975
Defines controls to employ at alternate work sites.
Draft
PE-17
CCI-002976
Defines physical and environmental hazards that could cause potential damage to system components within the facility.
Draft
PE-18
CCI-002977
The organization plans the location or site of the facility where the information system resides with regard to physical and environmental hazards.
Draft
PE-18(1)
CCI-002978
The organization considers the physical and environmental hazards in its risk mitigation strategy for existing facilities.
Draft
PE-18(1)
CCI-002979
Employ organization-defined asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.
Draft
PE-20
CCI-002980
Defines asset location technologies to track and monitor the location and movement of organization-defined assets within organization-defined controlled areas.
Draft
PE-20
CCI-002981
Defines the assets within the organization-defined controlled areas which are to be tracked and monitored for their location and movement.
Draft
PE-20
CCI-002982
Defines controlled areas where the location and movement of organization-defined assets are tracked and monitored.
Draft
PE-20
CCI-002983
The organization ensures that asset location technologies are employed in accordance with applicable federal laws, Executive Orders, directives, regulations, policies, standards, and guidance.
Draft
PE-20
CCI-002984
Develop an organization-wide information security program plan that reflects the coordination among organizational entities responsible for information security.
Draft
PM-1
CCI-002985
Disseminate an organization-wide information security program plan that provides an overview of the requirements for the security program and a description of the security program management controls and common controls in place or planned for meeting those requirements.
Draft
PM-1
CCI-002986
Disseminate an organization-wide information security program plan that includes the identification and assignment of roles, responsibilities, management commitment, coordination among organizational entities, and compliance.
Draft
PM-1
CCI-002987
Disseminate an organization-wide information security plan that reflects the coordination among organizational entities responsible for information security.
Draft
PM-1
CCI-002988
Disseminate an organization-wide information security program plan that is approved by a senior official with responsibility and accountability for the risk being incurred to organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation.
Draft
PM-1
CCI-002989
Protect the information security program plan from unauthorized disclosure.
Draft
PM-1
CCI-002990
Protect the information security program plan from unauthorized modification.
Draft
PM-1
CCI-002991
Implement a process to ensure that plans of action and milestones for the information security program and associated organizational systems are developed.
Draft
PM-4
CCI-002992
The organization implements a process for ensuring that plans of action and milestones for the security program and associated organizational information systems are reported in accordance with OMB FISMA reporting requirements.
Draft
PM-4
CCI-002993
Review plans of action and milestones for the security program and associated organization systems for consistency with the organizational risk management strategy and organization-wide priorities for risk response actions.
Draft
PM-4
CCI-002994
Review and update the risk management strategy in accordance with organization-defined frequency or as required, to address organizational changes.
Draft
PM-9
CCI-002995
Defines the frequency with which to review and update the risk management strategy to address organizational changes.
Draft
PM-9
CCI-002996
Implement an insider threat program that includes a cross-discipline insider threat incident handling team.
Draft
PM-12
CCI-002997
Establish a security workforce development and improvement program.
Draft
PM-13
CCI-002998
Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are developed.
Draft
PM-14
CCI-002999
Implement a process for ensuring that organizational plans for conducting security testing activities associated with organizational systems are maintained.
Draft
PM-14
CCI-003000
Implement a process for ensuring that organizational plans for conducting security training activities associated with organizational systems are developed.
Draft
PM-14
Prev
1...
95
96
97
98
99
100
101
102
103
...172
Next