CTAS Principles and Methodology

Created:  14 Jan 2016
Updated:  01 Aug 2016
This document defines the principles and methodologies that will be applied when conducting a CTAS evaluation and supersedes all previous CTAS methodologies.

The primary purpose is to provide a tailored approach to gaining assurance in the specific implementation of an IA object (Product/Service/System) so that the Senior Information Risk Owner/Accreditor is able to make a balanced risk decision.


PDF, 331.8KB

This file may not be suitable for users of assistive technology.


Was this document helpful?

We need your feedback to improve this content.

Yes No