Castleforce IT Security Team

A.10 Communications and operations management

A.10.1 Operational procedures and responsibilitie.

Objective: To ensure the correct and secure operation of information processing facilities.

A.10.1.1 Documented operating procedures

Control

Operating procedures shall be documented, maintained, and made available to all users who need them.

A.10.1.2 Change management

Control

Changes to information processing facilities and systems shall be controlled.

A.10.1.3 Segregation of duties

Control

Duties and areas of responsibility shall be segregated to reduce opportunities for unauthorized or unintentional modification or misuse of the organization’s assets.

A.10.1.4 Separation of development, test and operational facilities

Control

Development, test and operational facilities shall be separated to reduce the risks of unauthorised access or changes to the operational system.

Contact Castleforce for help with ISO27001 

Assuria Compliance and Vulnerability assessment, change detection, file integrity monitoring, Server Hardening and Log Management NETASQ-UTM-EAL4-Network-Security-appliances Credant we protect what matters DESlock+ FIPS-140-2 CESG CCTM Full disk Encryption, Removable Media Encryption, Email Encryption, Folder Encryption Stonesoft produce high availability multi link ISP firewalls to help reduce single point of failure Sourcefire-3D System and masters of SNORT and CLAMAV InfoGov helps you to achieve compliance, manage risk and demonstrate good governance now, and into the future. Swivel-PINsafe-CESG-CCTM-the-power-of-knowing Lumension-Security-Patch-Management-and-end-point-protection Imprivata OneSign Single Sign-On (SSO) appliance Check Point firewalls and Pointsec Encryption software Wallix-AdminBastion-and-LogBastion-provide-access-control-and-monitoring-solutions

© Copyright Castleforce 2007-2012. Web design by Theme Group