20th Regular Session of the Technical and Compliance Committee

At WCPFC19, the Commission approved the TCC18 recommendations to expand the annual VMS Security Audit, to include a more dynamic and continual assessment of the WCPFC information management systems and annual penetration testing of the WCPFC information management systems.  In 2023, TCC19 noted the Secretariat's plans to continue the ongoing, expanded security review work, which includes completing work on the development of an IT Systems Risk Register and conduct of routine penetration testing, and efforts to continue to improve the Secretariat's IT security score.  Updates will be provided by the Secretariat on the status of the WCPFC’s Information and Network Security Framework and provide advice and recommendations related to relevant workplan and resourcing requirements to facilitate the work of the Secretariat.