๐ผ 8f internal audit โ consider the sufficiency of internal auditโs coverage, skills, capacity and capabilities with respect to the provision of independent assurance that information security is maintained; form a view as to the effectiveness of information security controls based on audit conclusions; and consider where further assurance, including through expert opinion or other means, is warranted.
- Contextual name: ๐ผ 8f internal audit โ consider the sufficiency of internal auditโs coverage, skills, capacity and capabilities with respect to the provision of independent assurance that information security is maintained; form a view as to the effectiveness of information security controls based on audit conclusions; and consider where further assurance, including through expert opinion or other means, is warranted.
- ID:
/frameworks/apra-cpg-234/01/08/f - Located in: ๐ผ 8 Under CPS 234, the Board of an APRA-regulated entity is ultimately responsible for the information security of the entity. In order for a Board to be able to more effectively discharge its responsibilities (including oversight, seeking assurance and, as appropriate, challenging management), it could consider the following:
Descriptionโ
Empty...
Similarโ
- Internal
- ID:
dec-c-7fce3463
- ID:
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|