314.4(i)(2)—314.4(i)(2)
>Control Description
Material matters related to the information security program, addressing issues such as risk assessment, risk management and control decisions, service provider arrangements, results of testing, security events or violations and management's responses thereto, and recommendations for changes in the information security program.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.