Security Vulnerability Assessment
Commenting Period
13 June 2022 – 13 July 2022
Download Draft
Download Comment Form
Draft highlights

This standard provides practical guidance on the establishment and management of SVA programme to the organisation.

This standard gives overview on the key concepts the organisations need to understand in order to conduct a well-managed SVA programme, and the process to employ a security assessor in supporting the SVA programme.

Generally, this standard outlines:
a) the principles of SVA;
b) SVA accessor competency and qualification;
c) assurance of Confidentiality, Integrity and Availability (CIA);
d) SVA planning and management;
e) SVA programme methodology;
f) SVA reporting and presentation of findings; and
g) SVA monitoring and reviewing.