๐ผ CC3.4-6 Assesses Changes in Threats and Vulnerabilities
- Contextual name: ๐ผ CC3.4-6 Assesses Changes in Threats and Vulnerabilities
- ID:
/frameworks/soc-2/cc3/04/06 - Located in: ๐ผ CC3.4 The entity identifies and assesses changes that could significantly\ \ impact the system of internal control.
Descriptionโ
The risk identification process assesses changes in (1) internal and external threats to and vulnerabilities of the components of the entity's systems and (2) the likelihood and magnitude of the resultant risks to the achievement of the entity's objectives.
Similarโ
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|