>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AC-5Separation Of Duties

PBMM (P1)
Secret (P1)
Technical

>Control Description

(A) The organization: (a) Separates organization-defined duties of individuals; (b) Documents separation of duties of individuals; and (c) Defines information system access authorizations to support separation of duties.

>Supplemental Guidance

Separation of duties addresses the potential for abuse of authorized privileges and helps to reduce the risk of malevolent activity without collusion. Separation of duties includes, for example: (i) dividing mission functions and information system support functions among different individuals and/or roles; (ii) conducting information system support functions with different individuals (e.g., system management, programming, configuration management, quality assurance and testing, and network security); and (iii) ensuring security personnel administering access control functions do not also administer audit functions. Related controls: AC-3, AC-6, PE-3, PE-4, PS-2

>Tailoring Guidance

This security control/enhancement is considered to be best practice. Consequently, inclusion in a departmental profile is strongly encouraged in most cases.

Ask AI

Configure your API key to use AI features.