💼 24 Information assets that existed prior to an APRA-regulated entity’s current information security policy framework might not comply with the current framework’s requirements. In such instances, the regulated entity would typically raise an exemption and formulate a strategy for either replacing affected information assets or implementing appropriate compensating controls.
- Contextual name: 💼 24 Information assets that existed prior to an APRA-regulated entity’s current information security policy framework might not comply with the current framework’s requirements. In such instances, the regulated entity would typically raise an exemption and formulate a strategy for either replacing affected information assets or implementing appropriate compensating controls.
- ID:
/frameworks/apra-cpg-234/09/24 - Located in: 💼 9 Policy framework - Exemption handling
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-d8db4381
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|