TiHL: Suositus tietoturvan vähimmäisvaatimuksista

Requirement

3.4: Tietoturvallinen arkistointi ja tuhoaminen

Oh no! No description found. But not to worry. Read from Tasks below how to advance this topic.

Tiedonhallintayksikön on huolehdittava tietoaineistojen arkistoinnista tai tuhoamisesta tietoturvallisella tavalla.

Fulfill this requirement by completing the tasks below ->

This requirement is part of the framework:

TiHL: Suositus tietoturvan vähimmäisvaatimuksista

Other requirements of the framework

3.4: Tietoturvallinen arkistointi ja tuhoaminen

Best practices

How to implement:

3.4: Tietoturvallinen arkistointi ja tuhoaminen

This policy on

3.4: Tietoturvallinen arkistointi ja tuhoaminen

provides a set concrete tasks you can complete to secure this topic. Follow these best practices to ensure compliance and strengthen your overall security posture.

Tiedonhallintayksikön on huolehdittava tietoaineistojen arkistoinnista tai tuhoamisesta tietoturvallisella tavalla.

Read below what concrete actions you can take to improve this ->

Frameworks that include requirements for this topic:

No items found.

How to improve security around this topic

In Cyberday, requirements and controls are mapped to universal tasks. A set of tasks in the same topic create a Policy, such as this one.

Here's a list of tasks that help you improve your information and cyber security related to

3.4: Tietoturvallinen arkistointi ja tuhoaminen

Task name

Priority

Task completes

Complete these tasks to increase your compliance in this policy.

Critical

No other tasks found.

Complete these tasks in Cyberday ISMS ->

How to comply with this requirement

In Cyberday, requirements and controls are mapped to universal tasks. Each requirement is fulfilled with one or multiple tasks.

Here's a list of tasks that help you comply with the requirement

3.4: Tietoturvallinen arkistointi ja tuhoaminen

of the framework

TiHL: Suositus tietoturvan vähimmäisvaatimuksista

Task name

Priority

Task completes

Complete these tasks to increase your compliance in this policy.

Critical

Tietoaineistojen tuhoaminen osana laitteiden elinkaaren hallintaa

Critical

High

Normal

Low

Management of data sets

Management of data sets

Tietoaineistojen tuhoaminen osana laitteiden elinkaaren hallintaa

This task helps you comply with the following requirements

3.4: Tietoturvallinen arkistointi ja tuhoaminen TiHL tietoturvavaatimukset

Tietoaineistojen arkistointi- tai tuhoamisprosessit säilytysajan päättyessä

Critical

High

Normal

Low

Information management

Tiedonhallintamalli

Tietoaineistojen arkistointi- tai tuhoamisprosessit säilytysajan päättyessä

This task helps you comply with the following requirements

5 §: Tiedonhallintamalli ja muutosvaikutuksen arviointi TiHL

21 §: Tietoaineistojen säilytystarpeen määrittäminen TiHL

15 §: Tietoaineistojen turvallisuuden varmistaminen TiHL

TEK-21.1: Sähköisessä muodossa olevien tietojen tuhoaminen - arkistointi Julkri

3.1: Tietoaineistojen tietoturvallisuus TiHL tietoturvavaatimukset

Archiving and destruction processes for data sets

Critical

High

Normal

Low

Management of data sets

Management of data sets

Archiving and destruction processes for data sets

This task helps you comply with the following requirements

PR.IP-6: Data destruction NIST

A.7.4.5: PII de-identification and deletion at the end of processing ISO 27701

A.7.4.8: Disposal ISO 27701

8.10: Information deletion ISO 27001

P4.3: Secure disposal of personal information SOC 2

Measures for the storage of incoming information, information being processed and outgoing information

Critical

High

Normal

Low

Management of data sets

Management of data sets

Measures for the storage of incoming information, information being processed and outgoing information

This task helps you comply with the following requirements

PI1.5: Procedures for storing inputs, items in processing, and outputs in accordance with system spefications SOC 2

3.4: Tietoturvallinen arkistointi ja tuhoaminen TiHL tietoturvavaatimukset

5.2.4: Log management and analysis TISAX

ID.AM-3: Organizational communication and data flows are mapped.CyberFundamentals

3.14: Log Sensitive Data Access CIS 18

Complete these tasks in Cyberday ISMS ->

The ISMS component hierachy

When building an ISMS, it's important to understand the different levels of information hierarchy. Here's how Cyberday is structured.

Framework

Sets the overall compliance standard or regulation your organization needs to follow.

Requirements

Break down the framework into specific obligations that must be met.

Tasks

Concrete actions and activities your team carries out to satisfy each requirement.

Policies

Documented rules and practices that are created and maintained as a result of completing tasks.

Never duplicate effort. Do it once - improve compliance across frameworks.

Reach multi-framework compliance in the simplest possible way‍

Security frameworks tend to share the same core requirements - like risk management, backup, malware, personnel awareness or access management.

Cyberday maps all frameworks’ requirements into shared tasks - one single plan that improves all frameworks’ compliance.

Do it once - we automatically apply it to all current and future frameworks.

Start free trial