Logo

CISOBot - Your AI CISO Assistant

CFG-08

Sensitive / Regulated Data Access Enforcement

Weight: 7/10
Description

Mechanisms exist to configure Technology Assets, Applications and/or Services (TAAS) to restrict access to sensitive/regulated data.

Control Question

Does the organization configure Technology Assets, Applications and/or Services (TAAS) to restrict access to sensitive/regulated data?

Control Metadata
Domain:

Configuration Management

Validation Cadence:

Annual

Evidence Request List:

E-DCH-08

Have questions about this control?

Ask CISOBot for implementation guidance and best practices