The Australian Prudential Regulation Authority (APRA) has moved to address issues around information and IT risk in the institutions it supervises with the release of a new prudential practice guide. Areas of weakness include user awareness, access control, IT asset lifecycle management controls, monitoring and incident management, IT security reporting and metrics, and IT security assurance.

Read More >>