>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

2.1.22.1.2

>Control Description

For the purpose of point 2.1.1., the relevant entities shall establish procedures for identification, analysis, assessment and treatment of risks (‘cybersecurity risk management process’). The cybersecurity risk management process shall be an integral part of the relevant entities’ overall risk management process, where applicable. As part of the cybersecurity risk management process, the relevant entities shall:

Ask AI

Configure your API key to use AI features.