History
- Priority
- should
- Nov 2018
- Removed
- Removed due to not having a strong reason to be retained.
- 2017
- Agencies should use the results of the security risk assessment to determine the appropriatebalance of resources allocated to prevention as opposed to detection of cyber security incidents.
- 2015
- Agencies should use the results of the security risk assessment to determine the appropriatebalance of resources allocated to prevention as opposed to detection of cybersecurity incidents.
- 2010
- Agencies should use the results of the security risk assessment to determine the appropriate balance ofresources allocated to prevention as opposed to detection of cyber security incidents.
- 2008
- Agencies should use the results of the risk assessment to determine the appropriate balance of resources allocated to prevention versus detection of ICT security incidents.