Reporting information security events and weaknesses Security Audit Checklist

Reporting information security events and weaknesses Security Audit Checklist
Clause 13.1 ISO 17025

1. Reporting information security events

• Whether information security events are reported ‎through appropriate management channels as quickly ‎as possible.

• Whether formal information security event reporting ‎procedure, Incident response and escalation procedure ‎is developed and implemented. ‎

2. Reporting security weaknesses

• Whether there exists a procedure that ensures all ‎employees of information systems and services are ‎required to note and report any observed or suspected ‎security weakness in the system or services. ‎

Related documents

ISO 27001 checklist

Advertisement

Sponsor sites:

1. Phrases For Performance Appraisals.

2. Interview questions and answers.
This entry was posted on Wednesday, November 25th, 2009 at 6:31 am and is filed under ISO 27001 checklist. You can leave a response, or trackback from your own site.

Leave a Reply

CAPTCHA Image
*

Comment moderation is enabled. Your comment may take some time to appear.