CM-4.1: Separate Test Environments

changes to the system are analyzed in a separate test environment before implementation in an operational environment;

changes to the system are analyzed for security impacts due to flaws;

changes to the system are analyzed for privacy impacts due to flaws;

changes to the system are analyzed for security impacts due to weaknesses;

changes to the system are analyzed for privacy impacts due to weaknesses;

changes to the system are analyzed for security impacts due to incompatibility;

changes to the system are analyzed for privacy impacts due to incompatibility;

changes to the system are analyzed for security impacts due to intentional malice;

changes to the system are analyzed for privacy impacts due to intentional malice.

Configuration management policy

procedures addressing security impact analyses for changes to the system

procedures addressing privacy impact analyses for changes to the system

configuration management plan

security impact analysis documentation

privacy impact analysis documentation

privacy impact assessment

privacy risk assessment documentation

analysis tools and associated outputs system design documentation

system architecture and configuration documentation

change control records

procedures addressing the authority to test with PII

system audit records

documentation of separate test and operational environments

system security plan

privacy plan

other relevant documents or records

Organizational personnel with responsibility for conducting security and privacy impact analyses

organizational personnel with information security and privacy responsibilities

system/network administrators

members of change control board or similar

Organizational processes for security and privacy impact analyses

mechanisms supporting and/or implementing security and privacy impact analyses of changes