Environmental IA Controls - Fire Detection and Suppression

An XCCDF Rule

Description

<VulnDiscussion>Failure to provide adequate fire detection and suppression could result in the loss of or damage to data, equipment, facilities, or personnel. REFERENCES: DoD 5220.22-M (NISPOM), Incorporating Change 2, 18 May 2016 Chapter 5, Section 1, paragraph 5-104 NIST Special Publication 800-53 (SP 800-53), Rev 4, Controls: PE-13 and PE-13(1), (2), (3) and (4) NIST SP 800-12, An Introduction to Computer Security: The NIST Handbook NIST SP 800-100, Information Security Handbook: A Guide for Managers</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-245753r822820_rule
Severity: Low
Updated: 9 months ago

An adequate fire detection and suppression system must be installed and must be periodically tested. The following considerations must be incorporated into the system:

1. A fully automatic fire detection and suppression system must be installed for information system areas that automatically activates when it detects heat, smoke, or particles.
 
2. A servicing fire department must receive an automatic notification of any activation of the smoke detection or fire suppression system.
 3. Periodic testing of the fire detection and suppression system must be conducted.
 
4. The fire detection and suppression system(s) must be supported by an independent or alternate (backup) energy source.

Environmental IA Controls - Fire Detection and Suppression

Description

Remediation - Manual Procedure