💼 1 An APRA-regulated entity could benefit from developing a training and information security awareness program. This would typically communicate to personnel (staff, contractors and third parties) regarding information security practices, policies and other expectations as well as providing material to assist the Board and other governing bodies to execute their duties. Sound practice would involve tracking training undertaken and testing the understanding of relevant information security policies, both on
commencement and periodically.
- Contextual name: 💼 1 An APRA-regulated entity could benefit from developing a training and information security awareness program. This would typically communicate to personnel (staff, contractors and third parties) regarding information security practices, policies and other expectations as well as providing material to assist the Board and other governing bodies to execute their duties. Sound practice would involve tracking training undertaken and testing the understanding of relevant information security policies, both on commencement and periodically.
- ID:
/frameworks/apra-cpg-234/b/1 - Located in: 💼 Attachment B - Training and awareness
Description​
Empty...
Similar​
- Internal
- ID:
dec-c-ec210d1c
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|