History
- Priority
- must
- Nov 2018
- Removed
- Removed due to a change from a compliance culture to a risk management culture.
- 2017
- In circumstances where the agency head and accreditation authority roles are separate, theaccreditation authority must ensure the agency head has appropriate oversight of the securityrisks being accepted on behalf of the agency.
- 2015
- In circumstances where the agency head and accreditation authority roles are separate, theaccreditation authority must ensure the agency head has appropriate oversight of the securityrisks being accepted on behalf of the agency.