DISA Control Correlation Identifier (CCI)

CCI-000008 requires that “The organization establishes conditions for group membership.” This Control Correlation Identifier (CCI) was published on by DISA...

CCI-000338 requires that “The organization defines physical access restrictions associated with changes to the information system.” Defined by Homeland Security...

CCI-000009 requires that “The organization manages information system accounts by identifying authorized users of the information system and specifying access...

CCI-000012 requires that “The organization reviews information system accounts for compliance with account management requirements per organization-defined frequency.” Organization-defined frequency...

CCI-000010 requires that “The organization requires approvals by organization-defined personnel or roles for requests to create information system accounts.” This...

CCI-000019 requires that “The organization requires that users log out in accordance with the organization-defined time period of inactivity or...

CCI-000011 requires that “The organization creates, enables, modifies, disables, and removes information system accounts in accordance with organization-defined procedures or...

CCI-000206 requires that “The information system obscures feedback of authentication information during the authentication process to protect the information from...

CCI-000013 requires that “The organization manages information system accounts by notifying account managers when temporary accounts are no longer required...

CCI-000041 requires that “The organization authorizes network access to organization-defined privileged commands only for organization-defined compelling operational needs.” The organization...