ICT-as-a-service risk assessment annexe
This document provides supporting detail for the ICT-as-a-services risk assessment guideline. It is not intended to be read as a stand-alone document. It is intended as a companion to the guideline and is focussed on providing further details regarding key as-a-service risks that agencies should consider during their risk assessment of as-a-service options.