PS-02 Position Categorization
Control: The organization assigns a risk designation to all positions and establishes screening criteria for individuals filling those positions. The organization reviews and revises position risk designations [Assignment: organization-defined frequency].
Supplemental Guidance: Position risk designations are consistent with 5 CFR 731.106(a) and Office of Personnel Management policy and guidance.
Control Enhancements: (0) None.
Baseline: LOW PS-2 MOD PS-2 HIGH PS-2
Family: Personnel Security
ISO 17799 mapping: 8.1.2
COBIT 4.1 mapping: PO4.13, PO7.3
PCI-DSS v2 mapping: 12.7