DISA Control Correlation Identifier (CCI)

CCI-000070 requires that “The organization authorizes the execution of privileged commands via remote access only for organization-defined needs.” This Control...

CCI-000071 requires that “The organization monitors for unauthorized remote connections to the information system on an organization-defined frequency.” This Control...

CCI-000072 requires that “The organization ensures that users protect information about remote access mechanisms from unauthorized use and disclosure.” This...

CCI-000073 requires that “The organization develops an organization-wide information security program plan that provides an overview of the requirements for...

CCI-000058 requires that “The information system provides the capability for users to directly initiate session lock mechanisms.” This Control Correlation...

CCI-000074 requires that “The organization develops an organization-wide information security program plan that is approved by a senior official with...

CCI-000059 requires that “The organization defines the time period of inactivity after which the information system initiates a session lock.”...

CCI-000075 requires that “The organization reviews the organization-wide information security program plan on an organization-defined frequency.” This Control Correlation Identifier...

CCI-000060 requires that “The information system conceals, via the session lock, information previously visible on the display with a publicly...

CCI-000076 requires that “The organization defines the frequency with which to review the organization-wide information security program plan.” This Control...