Data Port
Evaluate applicable types of control activities DP
Define business controls ICS
Description
Data Mapping
Mapping Source
Mapping Target
D28 Risk treatment decision
Risk catalogue
D77 Approved Activity Lists
Process documentation