GOV-02
Publishing Cybersecurity & Data Protection Documentation
Description
Mechanisms exist to establish, maintain and disseminate cybersecurity and data protection policies, standards and procedures.
Control Question
Does the organization establish, maintain and disseminate cybersecurity and data protection policies, standards and procedures?
Control Metadata
Domain:
Cybersecurity & Data Protection Governance
Validation Cadence:
Annual
Evidence Request List:
E-GOV-08 E-GOV-09 E-GOV-11
Framework Mappings
This control maps to the following compliance frameworks
APRA CPS234
1819
MAS TRM
3.2.1
HKIA GL20
1.11.21.31.41.5