CISOBot - Your AI CISO Assistant

AST-13

Use of Third-Party Devices

Weight: 9/10

Description

Mechanisms exist to reduce the risk associated with third-party assets that are attached to the network from harming organizational assets or exfiltrating organizational data.

Control Question

Does the organization reduce the risk associated with third-party assets that are attached to the network from harming organizational assets or exfiltrating organizational data?

Control Metadata

Domain:

Asset Management

Validation Cadence:

Annual

Have questions about this control?

Ask CISOBot for implementation guidance and best practices