CISOBot - Your AI CISO Assistant

IAC-02

Identification & Authentication for Organizational Users

Weight: 9/10

Description

Mechanisms exist to uniquely identify and centrally Authenticate, Authorize and Audit (AAA) organizational users and processes acting on behalf of organizational users.

Control Question

Does the organization uniquely identify and centrally Authenticate, Authorize and Audit (AAA) organizational users and processes acting on behalf of organizational users?

Control Metadata

Domain:

Identification & Authentication

Validation Cadence:

Annual

Evidence Request List:

E-IAM-05 E-IAM-06

Have questions about this control?

Ask CISOBot for implementation guidance and best practices