16.8: Disable Any Unassociated Accounts
CSF v1.1 References:
PF v1.0 References:
Threats Addressed:
The next version of the control set incorporates all or part of this control into: 5.3: Disable Dormant Accounts.
Control Statement
Disable any account that cannot be associated with a business process or business owner.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]