AuditRubric
risk-treatment

risk-treatment Controls

3 controls across 2 frameworks.

NIST CSF

id-ra-6

Risk responses are chosen, prioritized, planned, tracked, and communicated

Identify / Risk Assessment

SOC2

cc5-1

Control activities are selected and developed to mitigate risks

Security / Control Activities
cc9-1

Risk mitigation strategies are identified and implemented

Security / Risk Mitigation