top of page

Principle 5

RISK-BASED STRATEGY AND EXECUTION

Audit Against Risk Thresholds

The audit function should review and assess proper execution of the cyber risk treatment plan based on the acceptable risk thresholds.

bottom of page