We are relatively new to the IRM Module. What's the best practive for adding CCPA Citations into the IRM Module. We use the Secure Control Framework controls as our Control Objectives in the IRM tool. One control may be mapped to CCPA 7002(b) but another control may be mapped to 7002b5 and another may be mapped to 7002b4 etc.
1. Do you created individual Citation records for all of 7002b OR individual records for each 7002b, 7002a, 7002b, 7002b1, 7002b2, 7002b3 etc...
2. If you do not created indivdual records, how do you link the Control Objective to 7002b4 and not all of 7002b?
thanks,
