>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

RSK-09.1Supply Chain Risk Assessment

Weight: 9

>Control Description

Mechanisms exist to periodically assess supply chain risks associated with Technology Assets, Applications and/or Services (TAAS).

>Cross-Framework Mappings

NIST SP 800-53 r5

RA-3(1)
Compare

NIST CSF 2.0

GV.SC
GV.SC-09
Compare

CIS Controls v8

15.5
Compare

SOC 2 TSC

CC3.2
Compare
CC9.2
Compare

FedRAMP Rev 5

RA-3(1)
Compare

NIST AI RMF

MANAGE-3.1

Canada ITSP 10.171

03.11.01.A
Compare
03.11.01.B
Compare
03.17.03.A
Compare

Australia ISM

ISM-1452
Compare
ISM-1567
Compare

India SEBI Guidelines

GV.SC.S7
Compare

EU DORA

Article 28.4(a)
Compare
Article 28.4(b)
Compare
Article 28.4(c)
Compare
Article 28.4(d)
Compare
Article 28.4(e)
Compare

UK DEF STAN 05-138

1400.0
Compare

SOC 2 TSC (Detailed)

CC3.2-POF7
Compare
CC3.2-POF9
Compare
CC9.2
Compare
CC9.2-POF1
Compare
CC9.2-POF2
Compare
CC9.2-POF3
Compare
CC9.2-POF7
Compare
CC9.2-POF11
Compare

CIS Controls v8.1 (Detailed)

15.5
Compare

ISO 27002:2022

8.3
Compare

NIST SP 800-171 Rev 3

03.11.01.a
Compare
03.11.01.b
Compare
03.17.03.a
Compare

NIST SP 800-172

3.11.6e
Compare

Data Privacy Management Principles

9.2
Compare

SEC Cybersecurity Rule

17 CFR 229.106(b)(1)(iii)
Compare

Ask AI

Configure your API key to use AI features.