MP-7(2)—Prohibit Use Of Sanitization-Resistant Media
>Control Description
Prohibit the use of sanitization-resistant media in organizational systems.
>Supplemental Guidance
Sanitization resistance refers to how resistant media are to non-destructive sanitization techniques with respect to the capability to purge information from media. Certain types of media do not support sanitization commands, or if supported, the interfaces are not supported in a standardized way across these devices. Sanitization-resistant media includes compact flash, embedded flash on boards and devices, solid state drives, and USB removable media.
>Related Controls
>Assessment Interview Topics
Questions assessors commonly ask
Process & Governance:
- •What formal policies and procedures govern the implementation of MP-7(2) (Prohibit Use Of Sanitization-Resistant Media)?
- •Who are the designated roles responsible for implementing, maintaining, and monitoring MP-7(2)?
- •How frequently is the MP-7(2) policy reviewed and updated, and what triggers policy changes?
- •What governance structure ensures MP-7(2) requirements are consistently applied across all systems?
Technical Implementation:
- •Describe the specific technical mechanisms or controls used to enforce MP-7(2) requirements.
- •What automated tools, systems, or technologies are deployed to implement MP-7(2)?
- •How is MP-7(2) integrated into your system architecture and overall security posture?
- •What configuration settings, parameters, or technical specifications enforce MP-7(2) requirements?
Evidence & Documentation:
- •What documentation demonstrates the complete implementation of MP-7(2)?
- •What audit logs, records, reports, or monitoring data validate MP-7(2) compliance?
- •Can you provide evidence of periodic reviews, assessments, or testing of MP-7(2) effectiveness?
- •What artifacts would you present during a FedRAMP assessment to demonstrate MP-7(2) compliance?
Ask AI
Configure your API key to use AI features.