Versions Compared

Old Version 19

changes.mady.by.user Robert Tofte

Saved on

compared with

New Version 20

changes.mady.by.user Robert Tofte

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

DepartmentAreaRecurrenceNext Date

Status*

AccountingLogical AccessQuarterly11 November 2017Planned
HR systemLogical AccessQuarterlyDatacenterPhysical Access2/yearQuality ManagementRisk registerQuarterly

Quality management

Risk acceptance (system owner/senior management)2/year

Quality managementSecurity management systemAnnual

Risk assessmentAll new designs








1.3 Awareness and Security training

Department/roleTraining/AwarenessRecurrenceDate

Status

AllHow to detect phishing2/year4 October 2017Completed
AllNewsletter/blog on actual eventsMonthly

All or targeted groupsPhishing testBi-monthly

New employeesInitial security training/onboardingMonthly


Existing employeesSkill upgradeAnnual

Quality managementReview training materialAnnual


1.4 Internal Audit

Department
Type of AuditDue date
AreaRecurrenceNext Date

Status

H.R.Questionaire18 april 2018

*

AccountingLogical AccessQuarterly11 November 2017Planned
HR systemLogical AccessQuarterly

DatacenterPhysical Access2/year
Planned








1.5 Reporting

TypeReccurenceDue date for reportDue date for management review

Status

Annual reportAnnual30th november 201714th december 2017In progress
Board reportQuarterly14 days before board meetingFeb 20th 2018Planned
Board presentationQuarterly14 days before board meetingFeb 20th 2018Planned
Top risksMonthlyMarch 1st 2018March 5th 2018In progresss

...