Details
-
Feature
-
Not Assigned
-
None
-
None
-
Services
-
-
-
1
-
1
-
40
-
Team_PLANET
-
Sprint 5
-
-
Overdue
Description
Update and sign the following 4 ISMS security policies once they have been formally reviewed by the Internal Policy Group (IPG) and any other reviewers:
- SKA-GOV-0000013 ISMS Information Security Management and Organisational Responsibilities
- SKA-GOV-0000016 ISMS Access Control And Physical Security Policy
- SKA-GOV-0000018 ISMS Security Requirements of Information Systems
- SKA-GOV-0000021 ISMS Network And Operational Security Policy
- SKA-GOV-0000019 ISMS Information Security in Supplier Relationships
This involves:
- Updating documents to implement reviewer comments
- Reviewing IPG and reviewer comments with the ISMF
- The IPG approving and signing the security policy documents
- The security policy documents are signed by the Director-General
- The signed policy is uploaded to eB
Once the above is complete, formally submit the following 4 ISMS security policies to the IPG for review:
- SKA-GOV-0000017 ISMS Software Development Security
- SKA-GOV-0000022 ISMS Asset Management and Compliance Security Policy
- SKA-GOV-0000023 ISMS Risk Assessment Methodology
- SKA-GOV-0000024 Risk Assessment Template
This involves:
- Migrating the policy documents to new document template if it hasn't already been done
- Identifying if anyone outside of the IPG needs to review these policy documents (i.e. Legal, Procurement, etc) and sending them a review request
- Asking the IPG to review and provide comments on all security policy documents