The organization protects information system, system component, or information system service documentation as required, in accordance with the risk management strategy.
No STIG checks reference this CCI.