CC2.3
External communication with relevant parties
SecurityPartialStale reviewSecurity (Common Criteria)
Control description
AICPA Trust Services Criteria
The entity communicates with external parties regarding matters affecting the functioning of internal control.
Auditor test plan
How this is tested during the audit
Auditor inspects the public trust portal, the customer security disclosure process, and breach-notification SLAs in MSAs.
Evidence
1 item attached to this control
- PNG
trust-portal-screenshot.png
sha256:0000000000008000… · 861.7 KB · 195d ago
Last reviewed
195d
Stale — reset before audit
Evidence on file
1
Owner
VE
VP Engineering
Accountable for design + operating effectiveness
Status timeline
Recent control history
Last reviewed by VP Engineering
195d ago
Remediation plan opened
209d ago
Auditor flagged design gap
255d ago