|
ID.RA-05.3: Risk assessment results shall be disseminated to relevant stakeholders.
|
http://cyfun.data.gift/data/requirement_ID_RA_05_3
|
18 |
|
ID.RA-05: Threats, vulnerabilities, likelihoods, and impacts are used to understand inherent risk and inform risk response prioritization
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_05
|
5 |
|
ID.RA-05: Threats, vulnerabilities, likelihoods, and impacts are used to understand inherent risk and inform risk response prioritization
|
http://cyfun.data.gift/data/subcategory_ID.RA-05
|
21 |
|
ID.RA-06.1: Risk responses shall be identified, prioritised, planned, tracked and communicated.
|
http://cyfun.data.gift/data/requirement_ID_RA_06_1
|
22 |
|
ID.RA-06: Risk responses are chosen, prioritized, planned, tracked, and communicated
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_06
|
5 |
|
ID.RA-06: Risk responses are chosen, prioritized, planned, tracked, and communicated
|
http://cyfun.data.gift/data/subcategory_ID.RA-06
|
15 |
|
ID.RA-08.1: The organisation shall establish and implement a vulnerability management plan to identify, analyse, assess, mitigate and communicate all types of vulnerabilities including in the form of a Coordinated Vulnerability Disclosure (CVD) according to applicable legal modalities.
|
http://cyfun.data.gift/data/requirement_ID_RA_08_1
|
21 |
|
ID.RA-08.2: The organisation shall implement automated mechanisms for disseminating and track- ing remedial measures related to vulnerability information that automatically handles vulnerability data collection, disseminates information, tracks remedial measures, includes reporting and accountability, and enables continuous monitoring.
|
http://cyfun.data.gift/data/requirement_ID_RA_08_2
|
17 |
|
ID.RA-08: Processes for receiving, analyzing, and responding to vulnerability disclosures are established
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_08
|
5 |
|
ID.RA-08: Processes for receiving, analyzing, and responding to vulnerability disclosures are established
|
http://cyfun.data.gift/data/subcategory_ID.RA-08
|
17 |
|
ID.RA: Risk Assessment
|
http://cyfun.data.gift/data/category_ID.RA
|
31 |
|
ID.RA: Risk Assessment
|
http://cyfun.data.gift/data/nist_category_ID_RA
|
5 |