Policy 7230A - Department of Administration
Policy 7230A - Department of Administration
Policy 7230A - Department of Administration
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
6.2. Integrity Operations ................................................................................. 18<br />
6.2.1. Monitor System Security Controls ......................................................... 18<br />
6.3. Maintenance Operations ......................................................................... 18<br />
6.3.1. Plan for, and Provide Notification <strong>of</strong>, Security Operations ................... 18<br />
6.3.2. Perform Patch and Vulnerability Management............................... 19<br />
6.3.3. Securely Maintain Systems .................................................................... 20<br />
6.4. Maintain Records ..................................................................................... 20<br />
7. Systems Audit ....................................................................................... 21<br />
7.1. Systems Audit ........................................................................................... 21<br />
7.1.1. Configure Auditing Capabilities ............................................................. 21<br />
7.1.2. Test Auditing Capabilities ...................................................................... 22<br />
7.1.3. Operate Auditing Capabilities ................................................................ 22<br />
7.2. Maintain Records ..................................................................................... 23<br />
8. Incident Response ................................................................................. 24<br />
8.1. Incident Response .................................................................................... 24<br />
8.1.1. Build a Team and Provide Training ........................................................ 24<br />
8.1.2. Build an IR Capability ............................................................................. 26<br />
8.1.3. Test the Plan .......................................................................................... 27<br />
8.2. Operate the Plan ...................................................................................... 27<br />
8.3. Maintain Records ..................................................................................... 27<br />
9. Contingency Planning ........................................................................... 28<br />
10. Physical Security ................................................................................... 29<br />
10.1. Physical Access Control ............................................................................ 29<br />
10.1.1. Control Physical Access .......................................................................... 29<br />
10.2. Physical Environmental Control ............................................................... 30<br />
10.2.1. Provide Environmental Controls ............................................................ 30<br />
10.3. Maintain Records ..................................................................................... 32<br />
11. Personnel Security ................................................................................ 33<br />
11.1. Acceptable Usage ..................................................................................... 33<br />
11.2. Personnel Operations............................................................................... 33<br />
11.2.1. Establish Pre-Hiring Processes ............................................................... 33<br />
11.2.2. Hire Employees in a Structured Fashion ................................................ 35<br />
11.2.3. Transfer Employees in a Structured Fashion ......................................... 35<br />
11.2.4. Terminate Employees in a Structured Fashion ...................................... 35<br />
11.3. Maintain Records ..................................................................................... 35