ID.IM.03:
Improvements are identified from execution of operational processes, procedures, and activities
Implementation Examples
Ex1:
Conduct collaborative lessons learned sessions with suppliers
Ex2:
Annually review cybersecurity policies, processes, and procedures to take lessons learned into account
Ex3:
Use metrics to assess operational cybersecurity performance over time