IT Operations Security Control Set

This IT Operations Security controls set / policy helps to ensure the correct and secure operation of information processing facilities (systems).

The control set / policy has been created by 6clicks as a baseline for your consideration when establishing your cyber and information security program.

Control sets / policies include a set of controls, in this case mapped to the requirements of ISO/IEC 27001, along with an associated set of policies, which we call statements.

Statements are the individual responsibilities that you assign to people -- or groups -- within your organisation and can be associated with reminders/checks for ongoing performance management.

This IT Operations Security controls set / policy includes the following topics;

• Standard operating procedures
• IT change management
• IT capacity management
• Anti-malware controls
• Backup
• Electronic media handling
• Mobile device management
• Security event management
• Technical vulnerability management
• Cryptographic key management