V-XXX - Scenario Name
Related Risk
- R-XXX - Risk name
Target Controls
- C-XXX - Control name
Objective
Describe what is being validated and why.
Description
Short explanation of the simulated situation.
Execution Method
Describe how to perform the test:
- step 1
- step 2
- step 3
Expected Outcome
What should happen if the control is effective:
- logs generated
- access blocked / limited
- alert triggered (if applicable)
Observed Outcome
(To be filled after execution)
Detection Result
- Detected / Not Detected / Partially Detected
Conclusion
- Effective / Partially Effective / Ineffective
Evidence
(Optional but recommended)
- logs
- screenshots
- command output
Notes
- limitations
- unexpected behavior
- follow-up actions