500.5(a)(1)—500.5(a)(1)
>Control Description
penetration testing of their information systems from both inside and outside the information systems’ boundaries by a qualified internal or external party at least annually; and
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.