Reference: CMMC 2.0
Family: PS
Level Introduced: 2
Title: Screen Individuals
Practice:
Screen individuals prior to authorizing access to organizational systems containing CUI.
CMMC Clarification:
Make sure all employees who need access to CUI have the organization-defined screening before they get access. Base the types of screening on the requirements defined for that specific level of access.
Example
You are in charge of security at your organization. All individuals you hire must have proper screening before they can access CUI. Screening may include activities such as background checks and drug testing. Follow the appropriate laws, policies, regulations, and criteria for the level of access required for each position.
Implementation Strategies
This is for registered users only. Please sign up for a free account, or Login, to see complete cross references to other standards and frameworks.
NIST 800-171 Requirements (1)
This is for registered users only. Please sign up for a free account, or Login, to see complete cross references to other standards and frameworks.
NIST 800-53 Controls (1)
This is for registered users only. Please sign up for a free account, or Login, to see complete cross references to other standards and frameworks.