Skip to main content

πŸ’Ό 66 Under CPS 234, an APRA-regulated entity is required to have robust mechanisms in place to detect and respond to actual or potential compromises of information security in a timely manner. The term β€˜potential’ is used to highlight that information security incidents are commonly identified when an event occurs (e.g. unauthorised access notification, customer complaint) requiring further investigation in order to ascertain whether an actual security compromise has occurred.

  • ID: /frameworks/apra-cpg-234/26/66

Description​

Empty...

Similar​

  • Internal
    • ID: dec-c-6f4d8bee

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlagsCompliance

Policies (9)​

PolicyLogic CountFlagsCompliance
πŸ›‘οΈ Azure Subscription Integration With Microsoft Defender For Cloud Apps is not enabled🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For App Services is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For Containers is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For Key Vault is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For Servers is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Microsoft Defender For Storage is not set to On🟒1🟒 x6no data
πŸ›‘οΈ Azure Subscription Security Alert Notifications to subscription owners are not configured🟒1🟒 x6no data

Internal Rules​

RulePoliciesFlags
βœ‰οΈ dec-x-1a2f62791
βœ‰οΈ dec-x-8a1ecfd01
βœ‰οΈ dec-x-9f7d853f1
βœ‰οΈ dec-x-52ac4ac01
βœ‰οΈ dec-x-351e376f1
βœ‰οΈ dec-x-8535d1ff1
βœ‰οΈ dec-x-a00b4ec91
βœ‰οΈ dec-x-a04719771
βœ‰οΈ dec-x-fafadacd1