>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

GOV-03Periodic Review & Update of Cybersecurity & Data Protection Program

Weight: 7

>Control Description

Mechanisms exist to review the cybersecurity and data protection program, including policies, standards and procedures, at planned intervals or if significant changes occur to ensure their continuing suitability, adequacy and effectiveness.

>Cross-Framework Mappings

NIST SP 800-53 r5

AC-1
Compare
AT-1
Compare
AU-1
Compare
CA-1
Compare
CM-1
Compare
CP-1
Compare
IA-1
Compare
IR-1
Compare
MA-1
Compare
MP-1
Compare
PE-1
Compare
PL-1
Compare
PM-1
Compare
PS-1
Compare
PT-1
Compare
RA-1
Compare
SA-1
Compare
SC-1
Compare
SI-1
Compare
SR-1
Compare

NIST CSF 2.0

GV.OV
GV.OV-01
Compare
GV.OV-02
Compare
GV.PO-02
Compare

ISO 27001:2022

7.5.2
Compare
7.5.2(a)
Compare
7.5.2(b)
Compare
7.5.2(c)
Compare

PCI DSS v4.0.1

1.1.1
Compare
10.1.1
Compare
11.1.1
Compare
12.1.1
Compare
12.1.2
Compare
12.1.3
Compare
12.1.4
Compare
2.1.1
Compare
3.1.1
Compare
4.1.1
Compare
5.1.1
Compare
6.1.1
Compare
7.1.1
Compare
8.1.1
Compare
9.1.1
Compare

SOC 2 TSC

CC2.2
Compare
CC5.3
Compare

Canada ITSP 10.171

03.15.01.B
Compare
03.15.03.D
Compare

OSFI B-13

1
Compare
1.3.1
Compare

Australia ISM

ISM-1617
Compare

India SEBI Guidelines

GV.PO.S2
Compare
GV.PO.S3
Compare
GV.PO.S4
Compare

New Zealand HISF

HSUP58
Compare
HHSP67
Compare
HML66
Compare

New Zealand HISF Suppliers

HSUP58
Compare

Saudi Arabia IoT Guidelines

1-1-4
Compare
1-2-3
Compare
1-4-6
Compare
1-8-3
Compare

Spain ENS

Article 27
Compare

UK CAF

B1.a
Compare

UK DEF STAN 05-138

2100.0
Compare
2101.0
Compare

SOC 2 TSC (Detailed)

CC2.2-POF7
Compare
CC5.3
Compare
CC5.3-POF6
Compare

GovRAMP

AC-01
Compare
AT-01
Compare
AU-01
Compare
CA-01
Compare
CM-01
Compare
CP-01
Compare
IA-01
Compare
IR-01
Compare
MA-01
Compare
MP-01
Compare
PE-01
Compare
PL-01
Compare
PS-01
Compare
RA-01
Compare
SA-01
Compare
SC-01
Compare
SI-01
Compare

ISO 27001:2022 (Detailed)

7.5.2
Compare
7.5.2(a)
Compare
7.5.2(b)
Compare
7.5.2(c)
Compare

ISO 27002:2022

5.1
Compare
5.37
Compare

ISO 42001:2023 (Detailed)

7.5.2
Compare
A.2.4
Compare

NIST SP 800-161

AC-1
Compare
AT-1
Compare
AU-1
Compare
CA-1
Compare
CM-1
Compare
CP-1
Compare
IA-1
Compare
IR-1
Compare
MA-1
Compare
MP-1
Compare
PE-1
Compare
PL-1
Compare
PS-1
Compare
PT-1
Compare
RA-1
Compare
SA-1
Compare
SC-1
Compare
SI-1
Compare
SR-1
Compare

NIST SP 800-171 Rev 3

03.15.01.b
Compare
03.15.03.d
Compare

NIST SP 800-171A Rev 3

A.03.15.01.ODP[01]
Compare
A.03.15.01.b[01]
Compare
A.03.15.01.b[02]
Compare

TISAX

1.5.1
Compare

Data Privacy Management Principles

11.3
Compare

45 CFR 155.260

155.260(a)(5)
Compare

FBI CJIS

5.2
Compare
5.3
Compare
5.4
Compare
5.5
Compare
5.6
Compare
5.8
Compare
5.9
Compare
MA-1
Compare

GLBA (16 CFR 314)

314.4(b)
Compare
314.4(g)
Compare

HIPAA Simplification 2013

§ 164.316(b)(1)(ii)
Compare
§ 164.316(b)(2)(iii)
Compare
§ 164.530(i)(2)(i)
Compare
§ 164.530(i)(2)(ii)
Compare
§ 164.530(i)(2)(iii)
Compare
§ 164.530(i)(3)
Compare

NERC CIP

CIP-002-5.1a 2.1
Compare
CIP-002-5.1a 2.2
Compare
CIP-003-8 R1
Compare

NY DFS 23 NYCRR 500

500.8(b)
Compare

Ask AI

Configure your API key to use AI features.