History

Priority

must

Nov 2018

Removed

Removed due to a merge of relevant content into security control 0140.

2017

Agencies must report cyber security incidents to ASD.

2015

Agencies must report cyber security incidents to ASD.

2010

Agencies, through an ITSM, must report significant cyber security incidents to DSD.

2008

Agencies, through their ITSA or ASA, must report significant ICT security incidents to DSD.