Skip to content
ATO Pathways
  Log In

RA-3: Risk Assessment

An OSCAL Control

    • ra-03_odp.01
    • document

      a document in which risk assessment results are to be documented (if not documented in the security and privacy plans or risk assessment report) is defined (if selected);
    • frequency

      the frequency to review risk assessment results is defined;
    • personnel or roles

      personnel or roles to whom risk assessment results are to be disseminated is/are defined;
    • frequency

      the frequency to update the risk assessment is defined;