Back Custom print Link Text Only Rich Text Print

  • Chief Information Security Officer

    • CRA-5.8.23

      A licensee's CISO, as referred to in Paragraph CRA-5.8.3(d), is responsible for overseeing and implementing the licensee's cyber security program and enforcing its cyber security policy. The CISO must report to an independent risk management function or the licensee must incorporate the responsibilities of cyber security risk into the risk management function.

      Amended: April 2023
      Added: April 2019

    • CRA-5.8.24

      [This Paragraph was deleted in January 2020]

      Deleted: January 2020
      Added: April 2019