An error occurred:

© 2025 Xylok, LLC

Version: features-advanced-collector-898c2c - rmfrev4

Navigate

CCI-001050

CCI-001050 Definition

Review risk assessment results on an organization-defined frequency.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001050.

Control

Description

The organization:

a: Conducts an assessment of risk, including the likelihood and magnitude of harm, from the unauthorized access, use, disclosure, disruption, modification, or destruction of the information system and the information it processes, stores, or transmits;

b: Documents risk assessment results in [one of "security plan"/"risk assessment report"/" {{ insert: param, ra-3_prm_2 }} "];

c: Reviews risk assessment results [one of ];

d: Disseminates risk assessment results to [one of ]; and

e: Updates the risk assessment [one of ] or whenever there are significant changes to the information system or environment of operation (including the identification of new threats and vulnerabilities), or other conditions that may impact the security state of the system.