← Controls / SR

SR-01 Policy and Procedures

Supply Chain Risk Management

Low Moderate High New in Rev 5

Description

Changes from Rev 4

New control family introduced in Rev 5

Compliance Mappings

ISO 27001:2022

5.1(a)5.25.2(a)5.2(b)5.2(c)5.2(d)5.2(e)5.2(f)5.2(g)7.57.5.17.5.1(a)7.5.1(b)7.5.27.5.2(a)7.5.2(b)7.5.2(c)7.5.37.5.3(a)7.5.3(b)7.5.3(c)7.5.3(d)7.5.3(e)7.5.3(f)

ISO 27002:2022

5.15.195.205.378.30

COBIT 2019

APO01.09APO02.02APO10.01APO10.02APO10.03APO10.04APO10.05APO13.03DSS01.02EDM01.01EDM01.03EDM05.01

CIS Controls v8

1515.2

NIST CSF 2.0

GV.OVGV.OV-01GV.OV-02GV.POGV.PO-01GV.PO-02GV.SC-01GV.SC-03GV.SC-04GV.SC-06GV.SC-07GV.SC-08GV.SC-10ID.AMID.RA

SOC 2 TSC

CC1.1-POF5CC1.2-POF1CC1.4-POF1CC1.4-POF2CC1.4-POF3CC2.2-POF1CC2.2-POF7CC2.3-POF10CC2.3-POF12CC2.3-POF9CC3.3CC3.4-POF5CC5.3CC5.3-POF1CC5.3-POF6CC7.2-POF1CC9.1CC9.2CC9.2-POF1CC9.2-POF10CC9.2-POF11CC9.2-POF12CC9.2-POF2CC9.2-POF3CC9.2-POF4CC9.2-POF5CC9.2-POF6CC9.2-POF7CC9.2-POF8CC9.2-POF9P1.1-POF5