AAC-02: Independent Audits

PF v1.0 References:

Next Version:

Info icon.

The next version of the control set incorporates all or part of this control into: A&A-03: Risk Based Planning Assessment.

Control Statement

Independent reviews and assessments shall be performed at least annually to ensure that the organization addresses nonconformities of established policies, standards, procedures, and compliance obligations.

[csf.tools Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.