Save 20% on accredited ISO 27001 course exams.
Limited-time offer – ends July 18, 2024
Use promo code:
EXAM20

Expert Advice Community

Guest

Data leakage prevention

  Quote
Guest
Guest user Created:   Jun 13, 2023 Last commented:   Jun 14, 2023

Data leakage prevention

I was wondering that there is no template for 8.12 Data leakage prevention in the toolkit.

Could you please provide any help on that topic in the context of a small company, not having to many options to introduce a fancy tool-set to cover this new 2022 aspect.

0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jun 13, 2023

Control A.8.12 Data leakage prevention is covered in the following documents of the toolkit, located in folder 09 Annex A Security Controls:

  • Information Classification Policy, sections 3.4 Handling classified information, and 3.5 Handing data exposure
  • Security Procedures for IT Department, sections 3.4 Network security management and 3.9 System monitoring
  • IT Security Policy, section 3.14 Internet use

For further information, see:

Quote
0 0
Guest
Guest user Jun 13, 2023

Thank you for your quick support. Since we have not the option to introduce a dedicated dlp solution I was looking for a more concept like document / process description in a dedicated document.

Quote
0 0
Expert
Rhand Leal Jun 14, 2023

Unfortunately, such a template is not available. ISO 27001 does not require a specific document for data loss prevention, and it is not a commonly used document.

For the development of such a document, we suggest you consider the following topics:

  • definition of responsibilities for data leakage prevention
  • definition of steps for data leakage prevention
  • definition of which type of information requires the application of data leakage prevention measures
  • definition of technologies to be implemented for data leakage prevention
  • definition of acceptable behavior for users regarding Internet use

Considering this suggestion, you can use the highlighted sections mentioned in the documents in the first answer to start your document.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jun 13, 2023

Jun 14, 2023

Suggested Topics