>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

VM-23Backlog Prioritization

>Control Description

Organization documents identified bugs, prioritize bug fixes according to risk, and tracks resolution as part of the product release cycle.

Theme

Process

Type

Corrective

Policy/Standard

Vulnerability Management Policy

>Implementation Guidance

1. Ensure a process has been defined and documented for creating documentation for identified bugs. 2. Ensure all identified bugs are fixed according to risk and are tracked till resolution

>Testing Procedure

1. Inspect and validate that a process has been defined and documented for creating documentation for identified bugs. 2. Validate for a sample of all identified bugs whether they were fixed according to risk and were tracked till resolution

>Audit Artifacts

E-VM-01
E-VM-22

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

CIS Controls
3

7.2
7.7
16.2

PCI DSS
1

6.3.1

Ask AI

Configure your API key to use AI features.