Information security policy
Within an organization, the starting point for information security is the information security policy: the requirements that your organization sets for information security are recorded in the policy. The security can be tested based on the policy.
Topics that are recorded in an information security policy:
- Cryptography
- Software development
- Software versioning
- Incident management
- Three lines model
- Security baselines
- Document classification
- System classification
- Network segmentation
Our consultants can help you draw up an information security policy that fits the risk profile of your organization, and help you with a plan to comply with this now and in the future, and how this should be tested, using our CaaS Platform.
