History
- Priority
- must
- Jul 2019
- Removed
- Security controls 0064, 0809, 0904, 1531, 0805 and 1140 removed due to being covered by the new The Australian Government Information Security Manual executive overview.
- Jun 2019
- When a change to a system or its environment impacts the security posture of the system, security risks associated with the operation of the system are determined by a security assessment, and formally accepted by an authorising officer, before the system is authorised to continue operating.
- Jan 2019
- When a change to a system or its environment impacts the security posture of the system, security risks associated with the operation of the system are determined by a security assessment, and formally accepted by an authorising officer, before the system is authorised to continue operating.
- Security control 0809 was modified to shift the focus from reaccreditation to activities required when a change to a system or its environment impacts its security posture.
- Nov 2018
- When a change to a system or its environment impacts the security of a system, and is subsequently assessed as having increased its security risk profile, the system undergoes reaccreditation.
- 2015
- When a configuration change impacts the security of a system, and is subsequently assessedas having changed the overall security risk for the system, the system must undergoreaccreditation.
- 2010
- When a configuration change impacts the security of a system, and is subsequently assessed as havingchanged the overall security risk for the system, the system must undergo reaccreditation.