What are the destruction requirements under the provisions for CUI with DoDI 5200.48?

Arlington Security Portal - Show on: Side Bar

When destroying CUI, including in electronic form, agencies must do so in a manner making it unreadable, indecipherable, and irrecoverable. If the law, regulation, or government-wide policy specifies a method of destruction, agencies must use the method prescribed. All federal contractors should employ media sanitization techniques as prescribed within NIST Special Publication 800-88, Revision 1, Guidelines for Media Sanitization.

Source: https://www.dodcui.mil/Portals/109/Documents/Policy%20Docs/DoDI%205200.48%20CUI.pdf

Need to Implement a DoD CUI Program? Talk to Arlington

DoD contractors - and other contractors providing services to federal agencies - need to have in place established policies, procedures, and processes regarding CUI that’s resident within their information systems. What federal contractors need is a CUI Program. Arlington can help, as we offer the following CUI services and solutions:

CUI Scoping & Gap Assessments
CUI Policy Development
CUI Identification
CUI Contractual Language Review
CUI Marking (Digital)
CUI Marking (Physical)

Arlington Security Portal

Get Access to 100 + NIST RMF security and privacy policies & procedures, programs, and plan templates.

Learn More

DoD Strategy & Advisory

FedRAMP for DOD Contractors

TPRM & Supply Chain

NISP eMASS DCSA

Cybersecurity

Config. Mgmt.

NIST 800-171

Data Privacy

DoD Cloud Security

CMMC

vCO & vCISO

Awareness / Threat Training

Risk Assessments

FISMA

CP & IR

Non-DoD NIST RMF

About Arlington

Expertise

Focus

Values

DoD Briefs

Case Studies

FAQ's

What are the destruction requirements under the provisions for CUI with DoDI 5200.48?

Arlington Security Portal

SERVICES

RESOURCES

ABOUT