CPL-02
Cybersecurity & Data Protection Controls Oversight
Description
Mechanisms exist to provide a cybersecurity and data protection controls oversight function that reports to the organization's executive leadership.
Control Question
Does the organization provide a cybersecurity and data protection controls oversight function that reports to its executive leadership?
Control Metadata
Domain:
Compliance
Validation Cadence:
Annual
Evidence Request List:
E-CPL-07 E-CPL-09 E-GOV-04 E-GOV-05 E-GOV-06 E-GOV-13 E-RSK-03
Framework Mappings
This control maps to the following compliance frameworks
APRA CPS 230
293058(b)58(c)
APRA CPS234
2727(a)27(b)27(c)27(d)27(e)29
MAS TRM
3.2.3
HKIA GL20
1.11.21.31.41.56.16.2