WEB-14 ยท Publicly Accessible Content Reviews

Control Description

Mechanisms exist to routinely review the content on publicly accessible systems for sensitive/regulated data and remove such information, if discovered.

Control Question
Assessment question for control validation

Does the organization routinely review the content on publicly accessible systems for sensitive/regulated data and remove such information, if discovered?

Control Weighting
7
Validation Cadence
Annual
NIST CSF Function
Identify
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Core Control Designations
Special designations and baseline inclusions
ESP Level 2: WEB-14
ESP Level 3: WEB-14
Additional Metadata
Applicability (Process):
x