History
- Priority
- must
- Nov 2018
- Removed
- Removed due to duplication of intent of security control 0441.
- 2017
- Agencies must follow the requirements for temporary access to classified information in theAustralian Government Personnel Security Management Protocol before granting personneltemporary access to a system.
- Control Text Changed. No public explaination.
- 2015
- Agencies must follow the Temporary access to classified information requirements in theAustralian Government Personnel Security Management Protocol before granting personneltemporary access to a system.
- 2010
- Agencies granting limited higher access to a system must ensure:• the requirement to grant limited higher access is temporary in nature and is an exception ratherthan the norm• an ITSM has approved the limited higher access• a cessation date for limited higher access has been set• the access period does not exceed two months• the limited higher access is granted on a non-ongoing basis• the system user only accesses information at one security clearance level higher than currently held• the system user is not granted privileged access to the system• the system user’s access is formally documented• the system user’s access is reported to the CISO.
- 2008
- Agencies granting limited higher access to a system must ensure: a. the requirement to grant limited higher access is temporary in nature and is an exception rather than the norm b. the information technology security adviser has approved the limited higher access c. a cessation date for limited higher access has been set d. the access period does not exceed two months e. the limited higher access is granted on a non-ongoing basis f. the system user only accesses security classified information at one security clearance level higher than currently held g. the system user is not granted privileged access to the system h. the system user’s access is formally documented i. the system user’s access is reported to the agency security adviser or their delegate.