IAC-15 ยท Account Management

Control Description

Mechanisms exist to proactively govern account management of individual, group, system, service, application, guest and temporary accounts.

Control Question
Assessment question for control validation

Does the organization proactively govern account management of individual, group, system, service, application, guest and temporary accounts?

Control Weighting
10
Validation Cadence
Quarterly
NIST CSF Function
Protect
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Tier 3 - Tactical
Core Control Designations
Special designations and baseline inclusions
MAD: IAC-15
ESP Level 1: IAC-15
ESP Level 2: IAC-15
ESP Level 3: IAC-15
Errata & Additional Notes

- updated mapping CMMC Level 1 - updated mapping CMMC Level 2 - updated mapping FAR 52.204-21