Mechanisms exist to implement and govern an insider threat program.
Control Question
Assessment question for control validation
Does the organization implement and govern an insider threat program?
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 1 - Strategic
Tier 2 - Operational
Tier 3 - Tactical