Back

Structure the language of compliance documents.


CONTROL ID
06098
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Harmonization Methods and Manual of Style, CC ID: 06095

This Control has the following implementation support Control(s):
  • Define the use of capitalization., CC ID: 06164
  • Establish, implement, and maintain general sentence structure guidelines., CC ID: 06131
  • Standardize word usage., CC ID: 06104
  • Define number formatting and number usage in the sentence structure guidelines., CC ID: 06116
  • Define tabulation formatting and tabulation usage in the sentence structure guidelines., CC ID: 06128
  • Define punctuation character formatting and usage and special character formatting and usage in the sentence structure guidelines., CC ID: 06144
  • Define a capitalization style in the sentence structure guidelines., CC ID: 06143


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • be written in plain language so that all employees can easily understand the principles and intent; (§ 5.2.1 ¶ 3 Bullet 2, ISO 19600:2014, Compliance Management Systems - Guidelines, 2014-12-15, Reviewed and confirmed in 2018)
  • Statements and writing style should be tailored to the audience and scope of the documentation. (§ 7.5.2 Guidance ¶ 5, ISO/IEC 27003:2017, Information technology — Security techniques — Information security management systems — Guidance, Second Edition, 2017-03)
  • Plans should be formatted to provide quick and clear directions in the event that personnel unfamiliar with the plan or the systems are called on to perform recovery operations. Plans should be clear, concise, and easy to implement in an emergency. Where possible, checklists and step-by-step procedu… (§ 4 ¶ 3, NIST SP 800-34, Contingency Planning Guide for Federal Information Systems, Rev. 1 (Final))