IAO-05—Plan of Action & Milestones (POA&M)
Weight: 9
>Control Description
Mechanisms exist to generate a Plan of Action and Milestones (POA&M), or similar risk register, to document planned remedial actions to correct weaknesses or deficiencies noted during the assessment of the security controls and to reduce or eliminate known vulnerabilities.
>Cross-Framework Mappings
CMMC v2.0
NIST AI RMF
Canada ITSP 10.171
SOC 2 TSC (Detailed)
ISO 42001:2023 (Detailed)
NIST SP 800-171 Rev 3
NIST SP 800-171A Rev 3
NERC CIP
Ask AI
Configure your API key to use AI features.