Description
The organization employs appropriate management, operational, and technical information system security controls at alternate work sites.\n
Supplemental Guidance
The organization provides a means for employees to communicate with information system security staff in case of security problems. NIST Special Publication 800-46 provides guidance on security in telecommuting and broadband communications.\n
Changes from Rev 4
Control text requires determining and documenting allowable alternate work sites New parameter includes specifying alternate work sites Discussion expanded to benefits of assessing effectiveness of applied controls
Enhancements
(0) None.\n
Compliance Mappings
SOC 2 TSC
A1.2
ISO 17799 (legacy)
11.7.2
COBIT 4.1 (legacy)
None.