STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 4 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

SA-21

System and Services AcquisitionRev 5

Developer Screening

CCI Identifiers (5)

CCI-003381Defines additional personnel screening criteria that must be satisfied by the developer of an organization-defined system, system component, or system service.CCI-003382Require that the developer of an organization-defined system, system component, or system service satisfies organization-defined additional personnel screening criteria.CCI-003383Defines the official government duties to be assigned to the developer of an organization-defined system, system component, or system service.CCI-003384Defines the system, system component, or system service which requires the system developer to have appropriate access authorizations, satisfy additional personnel screening criteria, and provide information that the access authorizations and screening criteria are satisfied.CCI-003385Require that the developer of an organization-defined system, system component, or system service has appropriate access authorizations as determined by assigned organization-defined official government duties.

Linked STIG Checks (0)

No STIG checks reference this control.