graphgrc

SCF - AST-02.8 - Data Action Mapping

Mechanisms exist to create and maintain a map of technology assets where sensitive/regulated data is stored, transmitted or processed.

Mapped framework controls

ISO 27002

• A.5.9

Control questions

Does the organization create and maintain a map of technology assets where sensitive/regulated data is stored, transmitted or processed?

This site is open source. Improve this page.