>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

IA-1Policy and Procedures

>Control Description

a

Develop, document, and disseminate to organization-defined personnel or roles: (a) Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and (b) Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and

1.

[Selection (one or more): Organization-level; Mission/business process-level; System-level] identification and authentication policy that:

2.

Procedures to facilitate the implementation of the identification and authentication policy and the associated identification and authentication controls;

b

Designate an organization-defined official to manage the development, documentation, and dissemination of the identification and authentication policy and procedures; and

c

Review and update the current identification and authentication:

1.

Policy organization-defined frequency and following organization-defined events; and

2.

Procedures organization-defined frequency and following organization-defined events.

>Related Controls

AC-1
PM-9
PS-8
SI-12

Ask AI

Configure your API key to use AI features.