Developing a cryptography policy
Assign topic to the user
Answer:
You can include in this policy basic rules related to cryptographic controls, for example:it is necessary the use of software tools to encrypt hard disks, software tools to encrypt the information in emails, encryption for external connections, etc.
For more information, this article can be interesting for you “How to use the cryptography according to ISO 27001 control A.10” : https://advisera.com/27001academy/how-to-use-the-cryptography-according-to-iso-27001/
And our template can be also interesting for you (you can download a free version clicking on “Free demo” tab) “Policy on the Use of Cryptographic Controls” : https://advisera.com/27001academy/documentation/policy-on-the-use-of-encryption/
Finally, these materials will help you to know more about the ISO 27001 and the cryptography controls:
- free online training ISO 27001 Foundatio ns Course https://advisera.com/training/iso-27001-foundations-course/
- book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
Comment as guest or Sign in
Sep 23, 2016