>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

DEV-05Risk assessment, categorisation and prioritisation of changes

>Control Description

In accordance with the applicable policies (cf. DEV-03), changes are subjected to a risk assessment with regard to potential effects on the system components concerned and are categorised and prioritised accordingly. Additional criteria: In accordance with the contractual agreements, meaningful information about the occasion, time, duration, type and scope of the change is submitted to authorised bodies of the cloud customer so that they can carry out their own risk assessment before the change is made available in the production environment. Regardless of the contractual agreements, this is done for changes that have the highest risk category based on their risk assessment.

Ask AI

Configure your API key to use AI features.