STA-04: Provider Internal Assessments

Control Family:

Supply Chain Management, Transparency, and Accountability

CSF v1.1 References:

PR.IP-7

PF v1.0 References:

PR.PO-P5

Control Statement

The provider shall perform annual internal assessments of conformance to, and effectiveness of, its policies, procedures, and supporting measures and metrics.

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4