>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AC-1Policy And Procedures

>Control Description

Enterprises should specify and include in agreements (e.g., contracting language) access control policies for their suppliers, developers, system integrators, external system service providers, and other ICT/OT-related service providers that have access control policies. These should include both physical and logical access to the supply chain and the information system. Enterprises should require their prime contractors to implement this control and flow down this requirement to relevant subtier contractors.

>Cross-Framework Mappings

SCF

GOV-02
Compare
GOV-03
Compare
IAC-01
Compare

Ask AI

Configure your API key to use AI features.