The college will adhere to NIST 800-53r5 controls to ensure that all security-related positions are staffed by qualified individuals possessing the necessary skill set to effectively manage and mitigate cyber risks.

The college will ensure that individuals accessing a system that stores, transmits, or processes information requiring special protection satisfy organization-defined personnel screening criteria.

Within this framework, the college shall ensure the effective implementation of identification and access management controls as outlined in NIST 800-53r5, in order to manage user access to information systems and ensure the confidentiality, integrity, and availability of sensitive data.