💼 18 It is increasingly common for third parties to rely on other service providers to deliver an end-to-end service. This introduces additional vulnerabilities and threats. Under such circumstances, APRA’s expectation is that an APRA-regulated entity would take reasonable steps to satisfy itself that the third party has sufficient information security capability to manage the additional threats and vulnerabilities resulting from such arrangements.
- Contextual name: 💼 18 It is increasingly common for third parties to rely on other service providers to deliver an end-to-end service. This introduces additional vulnerabilities and threats. Under such circumstances, APRA’s expectation is that an APRA-regulated entity would take reasonable steps to satisfy itself that the third party has sufficient information security capability to manage the additional threats and vulnerabilities resulting from such arrangements.
- ID:
/frameworks/apra-cpg-234/06/18 - Located in: 💼 6 Information security capability - Capability of third parties and related parties
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-6eeaac21
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|