AC-3(9)—Controlled Release
>Control Description
Information about the supply chain should be controlled for release between the enterprise and third parties. Information may be exchanged between the enterprise and its suppliers, developers, system integrators, external system service providers, and other ICT/OT-related service providers. The controlled release of enterprise information protects against risks associated with disclosure.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.