|
Article 6
|
When government agencies or specific non-government agencies (hereinafter referred to as “each agen-cy”) submit an improvement report in accordance with Paragraph 2 of Article 8, Paragraph 1 of Article 16, Paragraph 5 of Article 20 or Paragraph 3 of Article 21 of the Act, they shall present the following information based on the audit findings regarding the implementation of their cyber security maintenance plans:<br/>1. Missing or items requiring improvement and enhancement.<br/>2. Root cause.<br/>3. Measures implemented across management, technical, human resources, or other resource dimen-sions to correct deficiencies or strengthen areas requiring improvement.<br/>4. The scheduled completion timeline for the aforementioned measures and the methods for tracking implementation progress.<br/>Following submission of the improvement report as stipulated in the preceding paragraph, each agency shall submit a report on the implementation status of the improvement report within the timeframe and according to the procedures designated by the audit agency.
|