โญ Repository โ ๐ผ APRA CPG 234 โ ๐ผ 8 Policy framework - A policy hierarchy informed by a set of key principles โ ๐ผ 21 An APRA-regulated entityโs information security policy framework is commonly structured as a hierarchy, with higher level policies supported by underlying standards, guidelines and procedures. A policy framework would normally be informed by a set of information security principles that guide decision-making with regard to information security (refer to Attachment A for common information security principles).
๐ผ 21d definition of an overarching information security architecture that outlines the approach for designing the IT environment (encompassing all information assets) from a security perspective (e.g. network zones/segments, end point controls, gateway design, authentication, identity management, interface controls, software engineering and location of information security technology solutions and controls);
- ID:
/frameworks/apra-cpg-234/08/21/d
Descriptionโ
Empty...
Similarโ
- Internal
- ID:
dec-c-38c55e0c
- ID:
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|