>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

3.1.2Intelligence-Led Testing

>Control Description

FRFIs should adopt a risk-based approach to threat assessment and testing. FRFIs should set defined triggers, and minimum frequencies, for intelligence-led threat assessments to test cyber security processes and controls. FRFIs should also regularly perform tests and exercises, to identify vulnerabilities or control gaps in its cyber security programs (e.g., penetration testing and red teaming) using an intelligence-led approach. The scope and potential impacts of such testing should be clearly defined by the FRFI with effective risk mitigation controls applied throughout the assessment to manage any associated inherent risks.

>Cross-Framework Mappings

SCF

THR-10
Compare
VPM-06
Compare
VPM-07
Compare

Ask AI

Configure your API key to use AI features.