|
control familyRA
Risk Assessment (RA)
Risk Assessment - Contains 10 controls and 16 control enhancements.
10
Controls
16
Enhancements
risk-assessmentvulnerabilitythreat
Why These Connect
Maps To1
These are equivalent or closely aligned requirements in other frameworks.
“Risk Assessment maps to ISO 27001 Clause 6.1 Risk Assessment”
Addresses Topic2
This control is relevant to the linked cybersecurity topic area.
“Risk Assessment includes vulnerability scanning and management”
Implements2
These controls provide the technical implementation for the linked requirement.
“Risk Management Strategy maps to Risk Assessment controls”
Implementing Controls
Cross-Framework Mappings
ISO 27001ISO/IEC 27001:2022
Controls(10)
RA-1Policy and Procedures (RA-1)
LMH
RA-3Risk Assessment (RA-3)LMH
RA-2Security Categorization (RA-2)LMH
RA-4Risk Assessment Update (RA-4)WRA-5Vulnerability Monitoring and Scanning (RA-5)LMH
RA-6Technical Surveillance Countermeasures Survey (RA-6)RA-7Risk Response (RA-7)LMH
RA-8Privacy Impact Assessments (RA-8)RA-9Criticality Analysis (RA-9)MH
RA-10Threat Hunting (RA-10)