| AID | 3 |
|---|---|
| Domain | Audit & Assurance |
| CID | A&A-02 |
| Control | Independent Assessments |
| Control Specification | Conduct independent audit and assurance assessments according to relevant standards at least annually. |
| Control Type | Cloud & AI Related |
| AI CAIQ ID | A&A-02.1 |
| AI CAIQuestionnaire | Are independent audit and assurance assessments conducted according to relevant standards at least annually? |
| NIST AI 600-1 Mapping | MP-5.1-005<br /> GV-3.2-001 |
Reference: https://cloudsecurityalliance.org/artifacts/ai-controls-matrix