💼 43 To minimise information security vulnerabilities, an APRA-regulated entity would typically decommission systems:
a. that cannot be adequately updated as new security vulnerabilities or threats are identified; b. where the use of mitigating controls — such as segregation from other information assets — is not an option.
- Contextual name: 💼 43 To minimise information security vulnerabilities, an APRA-regulated entity would typically decommission systems: a. that cannot be adequately updated as new security vulnerabilities or threats are identified; b. where the use of mitigating controls — such as segregation from other information assets — is not an option.
- ID:
/frameworks/apra-cpg-234/15/43 - Located in: 💼 15 Implementation of controls - End-of-life and out-of-support issues
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-602aa8a9
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|