>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

CA-2Control Assessments

>Control Description

a

Select the appropriate assessor or assessment team for the type of assessment to be conducted;

b

Develop a control assessment plan that describes the scope of the assessment including:

1.

Controls and control enhancements under assessment;

2.

Assessment procedures to be used to determine control effectiveness; and

3.

Assessment environment, assessment team, and assessment roles and responsibilities;

c

Ensure the control assessment plan is reviewed and approved by the authorizing official or designated representative prior to conducting the assessment;

d

Assess the controls in the system and its environment of operation organization-defined frequency to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting established security and privacy requirements;

e

Produce a control assessment report that document the results of the assessment; and

f

Provide the results of the control assessment to organization-defined individuals or roles.

>Related Controls

AC-20
CA-5
CA-6
CA-7
PM-9
RA-5
RA-10
SA-11
SC-38
SI-3
SI-12
SR-2
SR-3

Ask AI

Configure your API key to use AI features.