>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AM-02Acceptable Use and Safe Handling of Assets Policy

>Control Description

Policies and instructions for acceptable use and safe handling of assets are documented, communicated and provided in accordance with SP-01 and address the following aspects of the asset lifecycle as applicable to the asset: • Approval procedures for acquisition, commissioning, maintenance, decommissioning, and disposal by authorised personnel or system components; • Inventory; • Classification and labelling based on the need for protection of the information and measures for the level of protection identified; • Secure configuration of mechanisms for error handling, logging, encryption, authentication and authorisation; • Requirements for versions of software and images as well as application of patches; • Handling of software for which support and security patches are not available anymore; • Restriction of software installations or use of services; • Protection against malware; • Remote deactivation, deletion or blocking; • Physical delivery and transport; • dealing with incidents and vulnerabilities; and • Complete and irrevocable deletion of the data upon decommissioning. Additional criteria: -

Ask AI

Configure your API key to use AI features.