Back

Include the organization's mission in the Code of Conduct.


CONTROL ID
12875
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain a Code of Conduct., CC ID: 04897

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Work with appropriate stakeholders to develop codes of conduct that address the organizational mission, vision, values, key policies, and expected business conduct. (OCEG GRC Capability Model, v. 3.0, P2.1 Develop Codes of Conduct, OCEG GRC Capability Model, v 3.0)
  • Identify the missions, business functions, and mission/business processes that the system is intended to support. (TASK P-8, Risk Management Framework for Information Systems and Organizations, A System Life Cycle Approach for Security and Privacy, NIST SP 800-37, Revision 2)