Description
The organization screens individuals requiring access to organizational information and information systems before authorizing access.\n
Supplemental Guidance
Screening is consistent with: (i) 5 CFR 731.106; (ii) Office of Personnel Management policy, regulations, and guidance; (iii) organizational policy, regulations, and guidance; (iv) FIPS 201 and Special Publications 800-73, 800-76, and 800-78; and (v) the criteria established for the risk designation of the assigned position.\n
Enhancements
(0) None.\n
Compliance Mappings
ISO 27001:2022
7.2(b)7.2(c)
ISO 27002:2022
6.1
SOC 2 TSC
CC1.4-POF5
ISO 17799 (legacy)
8.1.2
COBIT 4.1 (legacy)
PO7.6