How are risk owners and agency heads able to make informed decisions about ICT system accreditation without being provided with adequate information? The scope of an ICT system certification is a vital influencer upon the findings of an independent system audit. Exclusion of parts of a system, or other capabilities on which it depends, from … Continue reading When certification scope is reduced, risk transparency suffers