TPM-05.5—Third-Party Scope Review
Weight: 10
>Control Description
Mechanisms exist to perform recurring validation of the Responsible, Accountable, Supportive, Consulted & Informed (RASCI) matrix, or similar documentation, to ensure cybersecurity and data protection control assignments accurately reflect current business practices, compliance obligations, technologies and stakeholders.
>Cross-Framework Mappings
PCI DSS v4.0.1
Canada ITSP 10.171
SOC 2 TSC (Detailed)
NIST SP 800-171 Rev 3
NIST SP 800-171A Rev 3
NY DFS 23 NYCRR 500
Ask AI
Configure your API key to use AI features.