TDA-02.10: Product Testing & Reviews

TDA-02.10 · Product Testing & Reviews

Control Description

Mechanisms exist to regularly review Technology Assets, Applications and/or Services (TAAS) for an appropriate level of security and resiliency based on applicable risks and threats.

Control Question

Assessment question for control validation

Does the organization regularly review Technology Assets, Applications and/or Services (TAAS) for an appropriate level of security and resiliency based on applicable risks and threats?

Control Weighting

Validation Cadence

Quarterly

NIST CSF Function

Protect

Supply Chain Risk Management (SCRM) Tiers

Applicable SCRM tier levels for this control

Tier 2 - Operational

Tier 3 - Tactical

Core Control Designations

Special designations and baseline inclusions

MAD: TDA-02.10

Additional Metadata

Applicability (Process):

Errata & Additional Notes

- wordsmithed control