GRM-08: Policy Impact on Risk Assessments

CSF v1.1 References:

PF v1.0 References:

Warning icon.

Control is withdrawn in the next version of this control set and incorporated into: GRC-02: Risk Management Program.

Control Statement

Risk assessment results shall include updates to security policies, procedures, standards, and controls to ensure that they remain relevant and effective.

[ Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.