Implement detection measures with proactive notification in case of changes deviating from the established baseline.
The organization should establish a policy and procedures to detect deviations from the established control baseline. When a deviation is detected, the organization should follow the incidence management policies and procedures defined in SEF-01.
- Examine measures that evaluate the organization's compliance with the change management policy and determine if these measures are implemented according to policy control requirements.
[csf.tools Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]
Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.