>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AC-1Policy and Procedures

>Control Description

a

Develop, document, and disseminate to: organizational personnel with access control responsibilities (a) Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and (b) Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and

1.

Agency-level access control policy that:

2.

Procedures to facilitate the implementation of the access control policy and the associated access controls;

b

Designate an individual with security responsibilities to manage the development, documentation, and dissemination of the access control policy and procedures; and

c

Review and update the current access control:

1.

Policy annually and following any security incidents involving unauthorized access to CJI or systems used to process, store, or transmit CJI; and

2.

Procedures annually and following any security incidents involving unauthorized access to CJI or systems used to process, store, or transmit CJI.

>Cross-Framework Mappings

SCF

IAC-01
Compare

Ask AI

Configure your API key to use AI features.