Media Access and Protection Policy and Procedures ISO 27001

Download Free Media Access and Protection Policy and Procedures ISO 27001
Download Free Media Access and Protection Policy and Procedures ISO 27001
Objectives:
- Information system media protection policy; procedures addressing media access; access control policy and procedures; physical and environmental protection policy and procedures; media storage facilities; access control records; other relevant documents or records
- Organizational personnel with information system media protection

Procedures
- Examine information system media protection policy and procedures, access control policy and procedures, physical and environmental protection policy and procedures, or other relevant documents; reviewing for information system media types requiring restricted access and the measures to be employed to restrict access to only authorized individuals.
- Examine an agreed-upon representative sample of media access control records or other relevant records for an agreed-upon representative sample of information system media types identified
- Examine an agreed-upon representative sample of operations at media storage facilities and other relevant areas; observing for indication that the measures identified
- Examine an agreed-upon representative sample of operations at media storage facilities and other relevant areas; inspecting for indication that the measures identified
- Interview an agreed-upon representative sample of organizational personnel with information system media protection responsibilities; conducting focused discussions for further evidence that the measures identified

Objectives:
- The organization employs automated mechanisms to restrict access to media storage areas; and
- The organization employs automated mechanisms to audit access attempts and access granted

Procedures
- Examine information system media protection policy and procedures, access control policy and procedures, physical and environmental protection policy and procedures, security plan, or other relevant documents; reviewing for the automated mechanisms and configuration settings to be employed to restrict access to designated media storage areas.
- Examine documentation describing the current configuration settings for an agreed-upon specific sample of automated mechanisms=
- Examine an agreed-upon specific sample of media storage facilities;

Bookmark/Search this post with:
  • Delicious
  • Digg
  • StumbleUpon
  • Propeller
  • Reddit
  • Magnoliacom
  • Technorati
AttachmentSize
media-access-iso27001-checklist.xls15 KB
media-access-iso27001-checklist.pdf9.81 KB
media-access-iso27001-checklist.jpg25.98 KB

Trackback URL for this post:

http://www.itservicestrategy.com/trackback/91
  • Login to post comments
  • 1190 reads

User login

Who's new

  • AlanetesPalazola
  • deelpilky
  • SymnVialmyday
  • vandoiyoy
  • revaringins

Who's online

There are currently 0 users and 4 guests online.