💼 CM-12 Information Location (M)(H)
- Contextual name: 💼 CM-12 Information Location (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/cm/12 - Located in: 💼 Configuration Management
Description​
a. Identify and document the location of [Assignment: organization-defined information] and the specific system components on which the information is processed and stored;
b. Identify and document the users who have access to the system and system components where the information is processed and stored; and
c. Document changes to the location (i.e., system or system components) where the information is processed and stored.
CM-12 Additional FedRAMP Requirements and Guidance:
Requirement: According to FedRAMP Authorization Boundary Guidance.
Similar​
- Sections
/frameworks/nist-sp-800-53-r5/cm/12
- Internal
- ID:
dec-c-6051cde0
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 CM-12 Information Location | 1 |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP Moderate Security Controls → 💼 CM-12 Information Location (M)(H) | 1 |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 CM-12(1) Automated Tools to Support Information Location (M)(H) |