>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

CM-5(2)Access Restrictions For Change

PBMM (P2)
Secret (P2)
Operational

>Control Description

ACCESS RESTRICTIONS FOR CHANGE | REVIEW SYSTEM CHANGES The organization reviews information system changes organization-defined frequency and organization-defined circumstances to determine whether unauthorized changes have occurred.

>Supplemental Guidance

Indications that warrant review of information system changes and the specific circumstances justifying such reviews may be obtained from activities carried out by organizations during the configuration change process. Related controls: AU-6, AU-7, CM-3, CM-5, PE-6, PE-8.

>Profile-Specific Parameters

(2) [at least every 12 months]

Ask AI

Configure your API key to use AI features.