CMMC 1.0 Practice SC.3.193 Requirement:
Implement a policy restricting the publication of “Controlled Unclassified Information” (CUI) on externally-owned publicly accessible websites (e.g., Forums, LinkedIn, Facebook, Twitter, etc.).
CMMC 1.0 SC.3.193 Requirement Explanation:
“Controlled Unclassified Information” (CUI) must only be accessible to authorized persons, by posting “Controlled Unclassified Information” (CUI) publicly it is accessible to everyone.
Example CMMC 1.0 SC.3.193 Implementation:
Create a policy restricting employees from posting “Controlled Unclassified Information” (CUI) onto public websites. Examples include social media, blogs, and forums. This includes discussing “Controlled Unclassified Information” (CUI) in private messages on those sites.
CMMC 1.0 SC.3.193 Scenario(s):
- Scenario 1:
You have a security policy document that all employees must sign off on. One of the policies states that employees are prohibited from posting “Controlled Unclassified Information” (CUI) onto public websites.
Quick & Simple
Discover Our Cybersecurity Compliance Solutions:
Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you
NIST SP 800-171 & CMMC Compliance
Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
HIPAA Compliance
Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
FAR 52.204-21 Compliance
Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
ISO 27001 Compliance
Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.