Definition: A means of managing a risk, ensuring that a
business objective is achieved or that a
process is followed. Examples of control
include policies, procedures, roles, RAID,
door locks etc. A control is sometimes called
a countermeasure or safeguard. Control also
means to manage the utilization or behaviour
of a configuration item, system or IT service.