The organization documents the security state of organizational information systems and the environments in which those systems operate through security authorization processes.
No STIG checks reference this CCI.