Guest
Patch Management Policy and Vulnerability Management Policy
We are still in the process of obtaining ISO 27001 certification.
At the same time, we are receiving many many questionnaires/assessments from customers and prospects. These will hopefully disappear after the certification.
In these questionnaires they require “Patch Management Policy” and “Vulnerability Management Policy”. Do you have a template for each?
Assign topic to the user
Expert
Rhand Leal
Sep 04, 2020
Patch management and vulnerability management would be best covered in A.12.1 - Security Procedures for IT Department, located on folder 08 Annex A Security Controls >> A.12 Operations Security since it involves change management.
This article will provide you a further explanation:
- How to manage technical vulnerabilities according to ISO 27001 control A.12.6.1 https://advisera.com/27001academy/blog/2015/10/12/how-to-manage-technical-vulnerabilities-according-to-iso-27001-control-a-12-6-1/
Comment as guest or Sign in
Sep 04, 2020
Sep 04, 2020
Sep 04, 2020