History
- Priority
- must
- Nov 2018
- Removed
- Removed to ensure a focus on Chief Information Security Officers (CISOs) as the authority for all cyber security matters within organisations.
- 2017
- Agencies must designate an ITSM as the ITSA, to have responsibility for informationtechnology security management across the agency.
- 2015
- Agencies must designate an ITSM as the ITSA, to have responsibility for informationtechnology security management across the agency.
- 2010
- Agencies must designate an ITSM as the ITSA.
- 2008
- Agencies must appoint a person to the role of ITSA who is responsible for overseeing ICT security within the agency.