Please report any level of incident, no matter how small. The Information
Security office will evaluate the report and provide a full investigation if appropriate.
Substantive Change: Vulnerability Scanning Exception (EXCEPT0000229)
Last modified
August 11, 2023 - 11:04am
Post date
June 16, 2021 - 11:39am
Effective: May 14, 2021
The vulnerability scanning requirement for all network connected managed devices to be scanned has been rescinded for another six months while Information Security works to provide a solution that offers this service as required in the standard.
Please review the details of the exception and its compensating controls as well as the standards to which this exception applies.