Content library
TISAX: Information security
1.2.3: Information Security requirements in projects

How to fill the requirement

TISAX: Information security

1.2.3: Information Security requirements in projects

Task name
Priority
Status
Theme
Policy
Other requirements
Process for including information security aspects in project management
Critical
High
Normal
Low
Fully done
Mostly done
Partly done
Not done
Risk management and leadership
Risk management
3
requirements

Task is fulfilling also these other security requirements

6.1.5: Information security in project management
ISO27 Full
5.8: Information security in project management
ISO27k1 Full
1.2.3: Information Security requirements in projects
TISAX
1. Task description

Organisation has defined how information security aspects are integrated into used project management methods. Methods in use should require:

  • Project’s information security related risks are identified, evaluated and treated at an early stage of the project
  • Project’s information security related risks are reviewed if necessary
  • Responsibility for project’s information security is clearly attached to certain project roles
Procedure for classification of projects
Critical
High
Normal
Low
Fully done
Mostly done
Partly done
Not done
Risk management and leadership
Cyber security management
1
requirements

Task is fulfilling also these other security requirements

1.2.3: Information Security requirements in projects
TISAX
1. Task description

Organisation should have a procedure to classify projects from the point-of-view of required information security level and other information security requirements for the project.

The criteria for the classification of projects should be documented.

No items found.