On 14th February 2025, we will be making some changes to the standardised control framework within Risk Ledger.
We do this periodically so that the framework stays relevant, useful and practical for all users of the Risk Ledger platform.
All changes will be handled automatically within the platform and marked clearly with a full audit history kept within your activity feed.
This page gives you a summary of the changes that are coming.
Whatโs changing?
14 controls will have minor wording updates to give more clarity or bring in line with common industry language.
The Cyber Essentials Plus control (B2) will be nested underneath the Cyber Essentials control (B1).
As a supplier, what do you need to do?
If you have already submitted your assessment and your profile is up to date, you do not have to make any changes until your next 6 monthly re-assessment is due or one of your clients asks you to update or confirm a modified control question.
You will need to update or confirm the modified control questions before you can submit your next re-assessment.
If you have not yet submitted your assessment, you will need to update or confirm the modified control questions before you submit.