You are using the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) to manage security risks for an enterprise information system. During which of the following steps are the controls verified to meet compliance with governance, regulations, or requirements?

Pick an option to reveal the answer.