πΌ SA-9(1) Risk Assessments and Organizational Approvals (M)(H)
- Contextual name: πΌ SA-9(1) Risk Assessments and Organizational Approvals (M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/sa/09/01 - Located in: πΌ SA-9 External System Services (L)(M)(H)
Descriptionβ
(a) Conduct an organizational assessment of risk prior to the acquisition or outsourcing of information security services; and
(b) Verify that the acquisition or outsourcing of dedicated information security services is approved by [Assignment: organization-defined personnel or roles].
Similarβ
- Sections
/frameworks/fedramp-high-security-controls/sa/09/01
- Internal
- ID:
dec-c-d80bb49b
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ SA-9(1) Risk Assessments and Organizational Approvals (M)(H) |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|