‹ GR-12.2.5 GR-12.2.7 › GR-12.2.6 Licensees must ensure that the cyber security risk management framework encompasses, at a minimum, the following components: a) Cyber security strategy; b) Cyber security policy; and c) Cyber security risk management approach, tools and methodology and, an organization-wide security awareness program. Added: January 2022 ‹ GR-12.2.5 GR-12.2.7 ›
