Network policy
Assign topic to the user
Answer: From our templates, the following policies cover ISO 27001 network related controls:
- Access control policy (covers control A.9.1.2 Access to networks and network services)
- Bring Your Own Device (BYOD) Policy (covers control A.13.2.1 Information transfer policies and procedures)
- Acceptable Use Policy (covers control A.13.2.3 Electronic messaging)
- Information Classification Policy (covers control A.13.2.3 Electronic messaging)
- Information Transfer Policy (covers controls A.13.2.1 Information transfer policies and procedures and A.13.2.2 Agreements on information transfer) (this one you already bought)
For a more operational approach, you should consider the Operating Procedures for Information and Communication Technology, which covers the controls A.13.1.1 Network controls, A.13.1.2 Security of network services, A.13.2.1 Information transfer policies and procedures and A.13.2.2 Agreements on information transfer.
To see a free demo of these documents and evaluate if anyone of them can fulfill your needs, please access these links:
- https://advisera.com/27001academy/documentation/access-control-policy/
- https://advisera.com/27001academy/documentation/bring-your-own-device-byod-policy/
- https://advisera.com/27001academy/documentation/it-security-policy/
- https://advisera.com/27001academy/documentation/information-classification-policy/
Comment as guest or Sign in
Jan 19, 2018