Overview:
The organization provides the capability to expeditiously disconnect or disable remote access to the information system within [Assignment: organization-defined time period].
Supplemental Guidance:
This control enhancement requires organizations to have the capability to rapidly disconnect current users remotely accessing the information system and/or disable further remote access. The speed of disconnect or disablement varies based on the criticality of missions/business functions and the need to eliminate immediate or future remote access to organizational information systems.
Action Items:
1) Ensure a method to disconnect a remote connected user is in place
Related Documents:
1) Access Control Policy
2) Network Security Policy
3) Remote Access Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
AC-17 (9) [fifteen (15) minutes]
Moderate Additional FedRAMP Requirements and Guidance
none
Article ID: 42
Created: September 25, 2022
Last Updated: September 26, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-disconnect-disable-access-ac-17-9-42.html