>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

4.AWritten Information Security Program

>Control Description

Commensurate with the size and complexity of the Licensee, the nature and scope of the Licensee's activities, including its use of Third-Party Service Providers, and the sensitivity of the Nonpublic Information used by the Licensee or in the Licensee's possession, custody or control, each Licensee shall develop, implement, and maintain a comprehensive written Information Security Program based on the Licensee's Risk Assessment and that contains administrative, technical, and physical safeguards for the protection of Nonpublic Information and the Licensee's Information System.

>Cross-Framework Mappings

SCF

GOV-01
Compare

Ask AI

Configure your API key to use AI features.