Question 5
UnclassifiedOrganizations maintain mappings between the different control frameworks they adopt to:
Correct answer: B
Explanation
Organizations map controls across frameworks to reuse the same evidence and testing for overlapping requirements. This avoids duplicating assessments and lets them "avoid duplication of work when assessing compliance" while maintaining coverage of multiple standards.
Why each option is right or wrong
A. help identify controls with common assessment status.
B. avoid duplication of work when assessing compliance,
Control crosswalks are used to align overlapping requirements so the same control, evidence, and test result can satisfy multiple frameworks instead of being re-performed for each one. In practice, this reduces redundant audits and assessments across standards such as ISO 27001, NIST, or SOC 2, where many control objectives are substantively similar even if the wording differs.
C. help identify controls with different assessment status.
D. start a compliance assessment using the latest assessment.