They will be needed to find out a response precise to every danger and contain inside their summary the get-togethers responsible for the mitigation and Charge of Every aspect, whether it is via elimination, Manage, retention, or sharing of the chance having a 3rd party. Described in clause 5.two, https://iso27001requirements91233.blogdanica.com/6544553/iso-27001-requirements-an-overview
