๐ผ 58 An APRA-regulated entity would typically introduce processes to identify and classify end-user developed/configured software and assess risk exposures. In APRAโs view, any information software asset that is critical to achieving the objectives of the business or that processes sensitive data would comply with the relevant life-cycle management controls of the regulated entity.
- Contextual name: ๐ผ 58 An APRA-regulated entity would typically introduce processes to identify and classify end-user developed/configured software and assess risk exposures. In APRAโs view, any information software asset that is critical to achieving the objectives of the business or that processes sensitive data would comply with the relevant life-cycle management controls of the regulated entity.
- ID:
/frameworks/apra-cpg-234/23/58 - Located in: ๐ผ 23 Implementation of controls - End-user developed/configured software
Descriptionโ
Empty...
Similarโ
- Internal
- ID:
dec-c-4c738617
- ID:
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|