DISA Control Correlation Identifier (CCI)

CCI-000033 requires that “The information system enforces the use of human review for organization-defined security policy filters when the system...

CCI-000017 requires that “The information system automatically disables inactive accounts after an organization-defined time period.” This Control Correlation Identifier (CCI)...

CCI-000034 requires that “The information system provides the capability for a privileged administrator to enable/disable organization-defined security policy filters under...

CCI-000018 requires that “The information system automatically audits account creation actions.” This Control Correlation Identifier (CCI) was published on by...

CCI-000020 requires that “The information system dynamically manages user privileges and associated access authorizations.” This Control Correlation Identifier (CCI) was...

CCI-000021 requires that “The information system enforces dual authorization for organization-defined privileged commands and/or other organization-defined actions.” This Control Correlation...

CCI-000022 requires that “The information system enforces one or more organization-defined nondiscretionary access control policies over an organization-defined set of...

CCI-000023 requires that “The organization develops an organization-wide information security program plan that provides sufficient information about the program management...

CCI-000024 requires that “The information system prevents access to organization-defined security-relevant information except during secure, non-operable system states.” This Control...

CCI-000025 requires that “The information system enforces information flow control using explicit security attributes on information, source, and destination objects...