← Back to catalog
CP-9(7)

Dual Authorization for Deletion or Destruction

Contingency Planning (CP)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Enforce dual authorization for the deletion or destruction of [assignment].

Discussion

Dual authorization ensures that deletion or destruction of backup information cannot occur unless two qualified individuals carry out the task. Individuals deleting or destroying backup information possess the skills or expertise to determine if the proposed deletion or destruction of information reflects organizational policies and procedures. Dual authorization may also be known as two-person control. To reduce the risk of collusion, organizations consider rotating dual authorization duties to other individuals.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.