Level N/A
Establish, document, approve, communicate, apply, evaluate and maintain policies and procedures for managing the risks associated with applying changes to organization assets, including application, systems, infrastructure, configuration, etc., regardless of whether the assets are managed internally or externally (i.e., outsourced). Review and update the policies and procedures at least annually.
Parent
Compliance Framework
CCM v4.0.10
Control Number
CCC-01
Related
Compliance Framework
CIS v8.0
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST 800-53 Rev 5
NIST CSF v1.1
NIST CSF v1.1
NIST CSF v1.1
NIST CSF v1.1
Secure Controls Framework 2023.4
Secure Controls Framework 2023.4
Secure Controls Framework 2023.4
CIS v8.0