home || catalog: SP800-53rev3 / class: Operational / family: (PS) Personnel Security ||
search controls:
search nistpubs:

AC
AT
AU
CA
CM
CP
IA
IR
MA
MP
PE
PL
PM
PS

PS-01
PS-02
PS-03
PS-04
PS-05
PS-06
PS-07
PS-08 *

RA
SA
SC
SI
MMMMM

  PS-08: Personnel Sanctions  

base control objective:
The organization employs a formal sanctions process for personnel failing to comply with established information security policies and procedures.

supplemental objective information:
The sanctions process is consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. The process is described in access agreements and can be included as part of the general personnel policies and procedures for the organization.

enhancements to the base objective:

(1) None.

mapping to FIPS199 baseline:

  LOW: base     MOD: base     HIGH: base  

related (regimented) controls:

PL-04   Rules of Behavior
PS-06   Access Agreements

documents referenced in SP800-53rev3 for PS-08:

Document Date Status Title
NIST SP800-66 October, 2008 current   An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule

Search SP800-53rev3 catalog: