>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SC-15(3)Collaborative Computing Devices and Applications | Disabling and Removal in Secure Work Areas

IL6

>Control Description

Disable or remove collaborative computing devices and applications from organization-defined systems or system components in organization-defined secure work areas.

>DoD Impact Level Requirements

No specific parameter values or requirements for this impact level.

>Discussion

Failing to disable or remove collaborative computing devices and applications from systems or system components can result in compromises of information, including eavesdropping on conversations. A Sensitive Compartmented Information Facility (SCIF) is an example of a secure work area.

>Assessment Interview Topics

Questions assessors commonly ask

Process & Governance:

  • What policies govern the implementation of disabling and removal in secure work areas?
  • How are system and communications protection requirements defined and maintained?
  • Who is responsible for configuring and maintaining the security controls specified in SC-15(3)?

Technical Implementation:

  • How is disabling and removal in secure work areas technically implemented in your environment?
  • What systems, tools, or configurations enforce this protection requirement?
  • How do you ensure that disabling and removal in secure work areas remains effective as the system evolves?

Evidence & Documentation:

  • What documentation demonstrates the implementation of SC-15(3)?
  • Can you provide configuration evidence or system diagrams showing this protection control?
  • What logs or monitoring data verify that this control is functioning correctly?

Ask AI

Configure your API key to use AI features.