The cybersecurity incident management policy, including the associated cybersecurity incident response plan, is exercised at least annually.
- Topic
- Cybersecurity incident management policy
- Applicable to
- Non Classified, Official, Protected, Secret, Top Secret
History
- Mar 2025
- The cybersecurity incident management policy, including the associated cybersecurity incident response plan, is exercised at least annually.
- References to ‘cyber security’ were changed to ‘cybersecurity’ to align with Australia’s national dictionary.
- Sep 2023
- The cyber security incident management policy, including the associated cyber security incident response plan, is exercised at least annually.
- References to ‘incident response plan’ were replaced with ‘cyber security incident response plan’.
- Sep 2023
- The cyber security incident management policy, including the associated cyber security incident response plan, is exercised at least annually.
- References to ‘incident management’ were replaced with ‘cyber security incident management’.
- Sep 2022
- The incident management policy, including the associated incident response plan, is exercised at least annually.
- A new control was added covering exercising the incident management policy, including the associated incident response plan, at least annually.