Corrective actions includes implementing new controls, updating policies & procedures. Or organizations may need to revisit their risk assessment and treatment process to identify any missed risks. We’ve written an article breaking down that stage too, but given how comprehensive both t