All Episodes
Displaying 141 - 147 of 147 in total
Episode 142 — Spotlight: Media Sanitization (MP-6)
Media Sanitization (MP-6) ensures that storage media containing sensitive information are properly cleared, purged, or destroyed before reuse or disposal. For exam pur...
Episode 143 — Spotlight: Personnel Screening (PS-3)
Personnel Screening (PS-3) ensures that individuals with system access undergo appropriate background investigations before being granted authorization. For exam purpo...
Episode 144 — Spotlight: Authority to Process Personally Identifiable Information (PT-2)
Authority to Process Personally Identifiable Information (PT-2) requires organizations to establish and document legal, regulatory, and policy bases for collecting and...
Episode 145 — Spotlight: System Security and Privacy Plans (PL-2)
System Security and Privacy Plans (PL-2) define how security and privacy controls are implemented, documented, and maintained for each system. For exam purposes, under...
Episode 146 — Spotlight: Risk Management Strategy (PM-9)
Risk Management Strategy (PM-9) defines how an organization articulates risk appetite, tolerance, priorities, and decision rules so that security and privacy controls ...
Episode 147 — Spotlight: Physical Access Control (PE-3)
Physical Access Control (PE-3) translates least privilege into the built environment by governing who may enter facilities, rooms, and cages that host systems, media, ...