Logo

CISOBot - Your AI CISO Assistant

RSK-03

Risk Identification

Weight: 9/10
Description

Mechanisms exist to identify and document risks, both internal and external.

Control Question

Does the organization identify and document risks, both internal and external?

Control Metadata
Domain:

Risk Management

Validation Cadence:

Annual

Evidence Request List:

E-RSK-04

Framework Mappings

This control maps to the following compliance frameworks

MAS TRM

4.1.34.1.4(a)

HKIA GL20

1.11.21.31.41.52.12.22.3

Have questions about this control?

Ask CISOBot for implementation guidance and best practices