Risks are inherent in any organization. As a CCA working within an Assessment Team, you are assessing an OSC’s implementation of RA practices. When evaluating RA.L2-3.11.3[b], you want to determine whether vulnerabilities are remediated in accordance with risk assessments. What Assessment Object would you likely examine to make this determination?
Submit