News

APRA releases guide on IT security risk

THE Australian Prudential Regulation Authority (APRA) has released a guide on the management of information technology security risk.

According to APRA, the prudential practice guide (PPG) aims to target areas where they believe ongoing supervisory activities continue to identify weaknesses.

Topics addressed which are addressed by the PPG include the importance of an overarching framework, systematic IT asset life-cycle management, effective monitoring processes and robust IT security reporting and assurance mechanisms.

APRA claims the PPG is designed to provide guidance to senior management, risk management and IT security specialists (management and operational). However, it does not seek to provide an all-encompassing framework nor to replace or endorse existing industry standards and guidelines.  

Prudential Practice Guide PPG 234 Management of Security Risk in Information and Information Technology is available on the APRA website at:
http://www.apra.gov.au/Policy/upload/PPG_PPG234_MSRIT_012010_v7.pdf

Add a comment

| More

Add a comment Comments

No comments found, be the first to add one.
Thank you very much.

Your comment has been submitted.

Required

Please enter your name.

Required, but never displayed.

Please enter a valid email address.

Optional, and linked if provided.

Required and you can write upto 600 words for your comment.

Please enter your comment and limit it to 600 words.

Required

Please enter the code shown on the right.
Check this box to receive the latest updates in our email newsletter.
to get Security Industry News
delivered to your inbox

Recent comments

International bills to pay? Sign up now!