History

Priority

must

2010

ITSMs must be responsible for ensuring the development, maintenance, updating and implementationof SRMPs, SSPs and any SOPs where higher level, multi-system or agency-wide systems are used.

2008

The ITSA must be responsible for ensuring the development, maintenance, updating and implementation of security risk management plans (SRMPs), system security plans (SSPs) and any SOPs where higher level, multi-system or agency-wide systems are used.