RSK-02.1 ยท Impact-Level Prioritization

Control Description

Mechanisms exist to prioritize the impact level for Technology Assets, Applications and/or Services (TAAS) to prevent potential disruptions.

Control Question
Assessment question for control validation

Does the organization prioritize the impact level for Technology Assets, Applications and/or Services (TAAS) to prevent potential disruptions?

Control Weighting
9
Validation Cadence
Annual
NIST CSF Function
Identify
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 1 - Strategic
Tier 2 - Operational
Core Control Designations
Special designations and baseline inclusions
ESP Level 1: RSK-02.1
ESP Level 2: RSK-02.1
ESP Level 3: RSK-02.1
Additional Metadata
Applicability (Process):
x
Errata & Additional Notes

- wordsmithed control