IAO-07
Security Authorization
Description
Mechanisms exist to ensure Technology Assets, Applications and/or Services (TAAS) are officially authorized prior to "go live" in a production environment.
Control Question
Does the organization ensure Technology Assets, Applications and/or Services (TAAS) are officially authorized prior to "go live" in a production environment?
Control Metadata
Domain:
Information Assurance
Validation Cadence:
Annual