MP.L2-3.8.2 Media Access

This document provides assessment guidance for conducting Cybersecurity Maturity Model Certification (CMMC) assessments for Level 2.

Crowdstrike webpage providing security tips and resources for considerations on least privilege.

The DCSA CUI Program Office is dedicated to providing up-to-date information, tools, and resources to support Industry's implementation of CUI programs. This Defense Counterintelligence and Security Agency (DCSA) Controlled Unclassified Information (CUI) webpage is routinely updated with news and information related to DCSA’s CUI oversight responsibilities.

This document from the Environmental Protection Agency is an example of a procedure used to address compliance with NIST SP 800-53.

This IRS publication describes the safeguards for protecting federal tax returns and return information.

This NIST Special Publication provides recommendations to facilitate more efficient and effective storage encryption solution design, implementation, and management for Federal departments and agencies.

This example policy from the state of North Carolina describes what is required from personnel involved in the handling of media.

This article breaks down CMMC Section 3.8, which focuses on the media protection for media that contains controlled unclassified information (CUI)

This GSA-IT Security MP Procedurals reference provides guidance for the MP security controls identified in NIST SP 800-53 and federal contractor media protection requirements.

This video from SANS educates viewers on the positive and negative aspects of using full disk encryption for security.