💼 8b information security capability — consider the sufficiency of the regulated entity’s information security capability in relation to vulnerabilities and threats; ensure sufficiency of investment to support the information security capability; and review progress with respect to execution of the information security strategy.
- Contextual name: 💼 8b information security capability — consider the sufficiency of the regulated entity’s information security capability in relation to vulnerabilities and threats; ensure sufficiency of investment to support the information security capability; and review progress with respect to execution of the information security strategy.
- ID:
/frameworks/apra-cpg-234/01/08/b - Located in: 💼 8 Under CPS 234, the Board of an APRA-regulated entity is ultimately responsible for the information security of the entity. In order for a Board to be able to more effectively discharge its responsibilities (including oversight, seeking assurance and, as appropriate, challenging management), it could consider the following:
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-3d92755f
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|