πΌ CC4.1-8 Considers Different Types of Ongoing and Separate Evaluations
- Contextual name: πΌ CC4.1-8 Considers Different Types of Ongoing and Separate Evaluations
- ID:
/frameworks/soc-2/cc4/01/08 - Located in: πΌ CC4.1 The entity selects, develops, and performs ongoing and/or separate\ \ evaluations to ascertain whether the components of internal control are\ \ present and functioning.
Descriptionβ
Management uses a variety of different types of ongoing and separate evaluations, including penetration testing, independent certification made against established specifications (for example, ISO certifications), and internal audit assessments.
Similarβ
- Internal
- ID:
dec-c-b1dc1b50
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (2)β
| Policy | Logic Count | Flags |
|---|---|---|
| π Google Cloud Audit Logging is not configured properly π’ | 1 | π’ x6 |
| π Google GCE Network DNS Policy Logging is not enabled π’ | 1 | π’ x6 |