2 / 4

Identifies and Analyzes Risk

CC3 — Risk Assessment · Not yet reviewed

Status

○ NOT STARTED ◑ IN PROGRESS ✓ IMPLEMENTED — NOT APPLICABLE

What this control requires

The entity identifies risks to the achievement of its objectives across the entity and analyzes risks as a basis for determining how the risks should be managed.

Details

Risk Level

— LOW MEDIUM HIGH

Control Owner

Next Review Date

Notes — what's been done, what's missing, any gaps