SG-16—Enterprise Data Catalog
>Control Description
Theme
Type
Policy/Standard
Information Security Management Standard>Implementation Guidance
1. Ensure there is a documented enterprise data catalogue which consists of details that include but not limited to: key organizational data, environment metadata, and product information to facilitate continuous monitoring of the internal control environment. 2. Ensure that the documented enterprise data catalogue is reviewed and updated annually or as in when required.
>Testing Procedure
1. Inspect the Enterprise Data Catalog to determine that it includes key organizational data, environment metadata, and product information to facilitate continuous monitoring of the internal control environment. 2. Inspect that the data catalog is reviewed and updated periodically and further, upon the introduction of new service offerings and acquisitions.
>Audit Artifacts
>Framework Mappings
Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.
Ask AI
Configure your API key to use AI features.