graphgrc

SCF - RSK-06.1 - Risk Response

Mechanisms exist to respond to findings from cybersecurity & data privacy assessments, incidents and audits to ensure proper remediation has been performed.

Mapped framework controls

ISO 27001

• 6.1.3.a
• 6.1.3.b
• 6.1.3.c
• 6.1.3.d
• 6.1.3.e
• 6.1.3.f
• 6.1.3
• 8.3

ISO 27002

• A.5.8

NIST 800-53

• RA-7

SOC 2

• CC3.2
• CC3.3

Control questions

Does the organization respond to findings from cybersecurity & data privacy assessments, incidents and audits to ensure proper remediation has been performed?

This site is open source. Improve this page.