- Screen individuals prior to authorizing access to the system; and
- Rescreen individuals in accordance with [ Assignment: organization-defined conditions requiring rescreening and, where rescreening is so indicated, the frequency of rescreening ].
Personnel screening and rescreening activities reflect applicable laws, executive orders, directives, regulations, policies, standards, guidelines, and specific criteria established for the risk designations of assigned positions. Examples of personnel screening include background investigations and agency checks. Organizations may define different rescreening conditions and frequencies for personnel accessing systems based on types of information processed, stored, or transmitted by the systems.