graphgrc

SCF - CHG-03 - Security Impact Analysis for Changes

Mechanisms exist to analyze proposed changes for potential security impacts, prior to the implementation of the change.

Mapped framework controls

NIST 800-53

• CM-4

SOC 2

• CC3.4

Control questions

Does the organization analyze proposed changes for potential security impacts, prior to the implementation of the change?

This site is open source. Improve this page.