PRM-01 ยท Cybersecurity & Data Protection Portfolio Management

Control Description

Mechanisms exist to facilitate the implementation of cybersecurity and data protection-related resource planning controls that define a viable plan for achieving cybersecurity and data protection objectives.

Control Question
Assessment question for control validation

Does the organization facilitate the implementation of cybersecurity and data protection-related resource planning controls that define a viable plan for achieving cybersecurity and data protection objectives?

Control Weighting
8
Validation Cadence
Annual
NIST CSF Function
Govern
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 1 - Strategic
Tier 2 - Operational
Core Control Designations
Special designations and baseline inclusions
MAD: PRM-01
ESP Level 1: PRM-01
ESP Level 2: PRM-01
ESP Level 3: PRM-01
Additional Metadata
Applicability (Process):
x
Errata & Additional Notes

- wordsmithed control - renamed