Number: 
Creation Date:  2022-10-04
Effective Date:  2022-10-04
Version:  1.1
Last Reviewed:  2023-09-29
Security Classification:  Protected A
Scheduled Review Date:  2024-09-01
Status:  Approved

Description:
Please note that information classified as Protected (per the Data and Information Security Classification standard) is only accessible to Government of Alberta Employees. External users are therefore not able to download this document. To request access, please contact us: imt.policy@gov.ab.ca.

Establishes the control objectives for the vulnerability management program. It mandates ongoing scanning, investigation, analysis, and reporting of the risk associated with vulnerabilities and ensures that these weaknesses are prioritized for remediation based on the risk to Government of Alberta (GoA) systems and data.​​​


Keywords: vulnerability, assessment, remediation, mitigation