Article 9.4(e)—Article 9.4(e)
>Control Description
implement documented policies, procedures and controls for ICT change management, including changes to software, hardware, firmware components, systems or security parameters, that are based on a risk assessment approach and are an integral part of the financial entity’s overall change management process, in order to ensure that all changes to ICT systems are recorded, tested, assessed, approved, implemented and verified in a controlled manner;
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.