Employ independent assessors or assessment teams to conduct control assessments.
| ID | Name | Description | D3FEND | |
| CM0089 | Assessment & Authorization | The A&A process establishes the extent to which a particular design and implementation, meet a set of specified security requirements defined by the organization, government guidelines, and federal mandates into a formal authorization package. | ||
| ID | Description | |
| Requirement |
|---|
| ID | Name | Description | |
|---|---|---|---|