Oh no! No description found. But not to worry. Read from Tasks below how to advance this topic.
Objective: When being transferred via public or private networks, information can in some circumstances be read or manipulated by unauthorized third parties. Therefore, requirements regarding the protection needs of the information must be determined and implemented by taking suitable measures during such transfer.
Requirements (must): The network services used to transfer information are identified and documented.
Policies and procedures in accordance with the classification requirements for the use of network services are defined and implemented.
Measures for the protection of transferred contents against unauthorized access are implemented.
Requirements (should): Measures for ensuring correct addressing and correct transfer of information are implemented.
Electronic data exchange is conducted using content or transport encryption according to the respective classification.
Remote access connections are verified to possess adequate security features (e.g., encryption, granting and termination of access) and capabilities.
Objective: When being transferred via public or private networks, information can in some circumstances be read or manipulated by unauthorized third parties. Therefore, requirements regarding the protection needs of the information must be determined and implemented by taking suitable measures during such transfer.
Requirements (must): The network services used to transfer information are identified and documented.
Policies and procedures in accordance with the classification requirements for the use of network services are defined and implemented.
Measures for the protection of transferred contents against unauthorized access are implemented.
Requirements (should): Measures for ensuring correct addressing and correct transfer of information are implemented.
Electronic data exchange is conducted using content or transport encryption according to the respective classification.
Remote access connections are verified to possess adequate security features (e.g., encryption, granting and termination of access) and capabilities.
In Cyberday, requirements and controls are mapped to universal tasks. A set of tasks in the same topic create a Policy, such as this one.
In Cyberday, requirements and controls are mapped to universal tasks. Each requirement is fulfilled with one or multiple tasks.
When building an ISMS, it's important to understand the different levels of information hierarchy. Here's how Cyberday is structured.
Sets the overall compliance standard or regulation your organization needs to follow.
.svg)
.svg)
.svg)
Break down the framework into specific obligations that must be met.
.svg)
Concrete actions and activities your team carries out to satisfy each requirement.
Documented rules and practices that are created and maintained as a result of completing tasks.
