Originally published at: RA.L2-3.11.1 - CMMC 2.0 Control Explorer - GRC Academy
Periodically assess the risk to organizational operations (including mission, functions, image, or reputation), organizational assets, and individuals, resulting from the operation of organizational systems and the associated processing, storage, or transmission of CUI.