3.9.1
-
Requirement
Screen individuals prior to authorizing access to organizational systems containing CUI.
-
Discussion
Personnel security screening (vetting) activities involve the evaluation/assessment of individualā€™s conduct, integrity, judgment, loyalty, reliability, and stability (i.e., the trustworthiness of the individual) prior to authorizing access to organizational systems containing CUI. The screening activities reflect applicable federal laws, Executive Orders, directives, policies, regulations, and specific criteria established for the level of access required for assigned positions.
NIST 800-171A Assessment Guidance
CMMC Training
Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!