>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

OIS-02Information Security Policy

>Control Description

The top management of the Cloud Service Provider has adopted an information security policy and communicated it to internal and external employees as well as cloud customers. The policy describes: • the importance of information security, based on the requirements of cloud customers in relation to information security; • the security objectives and the desired security level, based on the business goals and tasks of the Cloud Service Provider; • the most important aspects of the security strategy to achieve the security objectives set; and • the organisational structure for information security in the ISMS application area. Additional criteria: -

Ask AI

Configure your API key to use AI features.