Controlled Unclassified Information (CUI) - Local Policy Procedure

From Traditional Security

Part of Controlled Unclassified Information (CUI) - Local Policy Procedure

Associated with IA controls: PESP-1, PEPF-1

SV-42473r2_rule Controlled Unclassified Information (CUI) - Local Policy Procedure

Vulnerability discussion

Failure to handle CUI in an approved manner can result in the loss or compromise of sensitiveinformation.

Check content

General Policy Guidance: All personnel of the Department of Defense are personally and individually responsible for properly protecting classified information and Controlled Unclassified Information (CUI) under their custody and control. All officials within the Department of Defense who hold command, management, or supervisory positions have specific, non-delegable responsibility for the quality of implementation and management of the information security program within their areas of responsibility. Check: This check is specifically to ensure there are local written procedures for handling, marking, storing, destroying and transmitting Controlled Unclassified Information. TACTICAL ENVIRONMENT: The check is applicable for fixed (established) tactical processing environments where procedural documents (SOPs) should be in place. Not applicable to a field/mobile environment.

Fix text

General Policy Guidance: All personnel of the Department of Defense are personally and individually responsible for properly protecting classified information and Controlled Unclassified Information (CUI) under their custody and control. All officials within the Department of Defense who hold command, management, or supervisory positions have specific, non-delegable responsibility for the quality of implementation and management of the information security program within their areas of responsibility. Fix: Ensure there are local written procedures for handling, marking, storing, destroying and transmitting Controlled Unclassified Information.

Pro Tips

Powered by sagemincer