VPM-02
Vulnerability Remediation Process
Description
Mechanisms exist to ensure that vulnerabilities are properly identified, tracked and remediated.
Control Question
Does the organization ensure that vulnerabilities are properly identified, tracked and remediated?
Control Metadata
Domain:
Vulnerability & Patch Management
Validation Cadence:
Annual
Evidence Request List:
E-RSK-03 E-RSK-04 E-VPM-01
Framework Mappings
This control maps to the following compliance frameworks
APRA CPS234
21
MAS TRM
13.6.1(a)13.6.1(b)13.6.1(c)