ISO/IEC certification at T-Systems extends in detail to:
- Security strategy: The management sets the course
- Security organization: An infrastructure is in place to ensure information security
- Capture and classification of values: Classification, naming and treatment of information are specified
- Personal security: Job descriptions, user training, behavior in the event of security-relevant incidents
- Physical and environmental security: equipment, zones, measures
- Management and operational communications: Procedures and responsibilities, system planning and approval, protection from malware, network management, etc.
No comments:
Post a Comment