IR-09(04)—Information Spillage Response | Exposure to Unauthorized Personnel
Moderate
>Control Description
Employ the following controls for personnel exposed to information not within assigned access authorizations: ⚙organization-defined controls.
>Discussion
Controls include ensuring that personnel who are exposed to spilled information are made aware of the laws, executive orders, directives, regulations, policies, standards, and guidelines regarding the information and the restrictions imposed based on exposure to such information.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.