CPL-03
Cybersecurity & Data Protection Assessments
Description
Mechanisms exist to regularly review processes and documented procedures to ensure conformity with the organization's cybersecurity and data protection policies, standards and other applicable requirements.
Control Question
Does the organization regularly review processes and documented procedures to ensure conformity with the organization's cybersecurity and data protection policies, standards and other applicable requirements?
Control Metadata
Domain:
Compliance
Validation Cadence:
Semi-Annual
Evidence Request List:
E-CPL-05 E-CPL-07
Framework Mappings
This control maps to the following compliance frameworks
APRA CPS234
30
MAS TRM
4.5.1
HKIA GL20
1.11.21.31.41.56.16.2