CM-5(4) - Access Restrictions for Change | Dual Authorization

Enforce dual authorization for implementing changes to [Assignment: organization-defined system components and system-level information].

Informational References

ISO 27001

ID: CM-5(4)
Enhancement of : CM-5

Countermeasures Covered by Control

ID Name Description D3FEND

Space Threats Tagged by Control

ID Description

Sample Requirements


Related SPARTA Techniques and Sub-Techniques

ID Name Description