VPM-05
Software & Firmware Patching
Description
Mechanisms exist to conduct software patching for all deployed Technology Assets, Applications and/or Services (TAAS), including firmware.
Control Question
Does the organization conduct software patching for all deployed systems, applications and firmware?
Control Metadata
Domain:
Vulnerability & Patch Management
Validation Cadence:
Quarterly
Evidence Request List:
E-MNT-03
Framework Mappings
This control maps to the following compliance frameworks
APRA CPS234
21
MAS TRM
7.4.17.4.2