Filter

Governance Risk and Compliance (GRC)

Establish and follow an approved exception process as mandated by the governance program whenever a deviation from an established policy occurs.


Login

Governance Risk and Compliance (GRC)

Develop and implement an Information Security Program, which includes programs for all the relevant domains of the CCM.


Login

Governance Risk and Compliance (GRC)

Define and document roles and responsibilities for planning, implementing, operating, assessing, and improving governance programs.


Login

Governance Risk and Compliance (GRC)

Identify and document all relevant standards, regulations, legal/contractual, and statutory requirements, which are applicable to your organization.


Login

Governance Risk and Compliance (GRC)

Establish and maintain contact with cloud-related special interest groups and other relevant entities in line with business context.


Login

Human Resources (HRS)

Establish, document, approve, communicate, apply, evaluate and maintain policies and procedures for background verification of all new employees (including but not limited to remote employees, contractors, and third parties) according to local laws, regulations, ethics, and contractual constraints and proportional to the data classification to be accessed, the business requirements, and acceptable risk. Review and update the policies and procedures at least annually.


Login

Human Resources (HRS)

Establish, document, approve, communicate, apply, evaluate and maintain policies and procedures for defining allowances and conditions for the acceptable use of organizationally-owned or managed assets. Review and update the policies and procedures at least annually.


Login

Human Resources (HRS)

Establish, document, approve, communicate, apply, evaluate and maintain policies and procedures that require unattended workspaces to not have openly visible confidential data. Review and update the policies and procedures at least annually.


Login

Human Resources (HRS)

Establish, document, approve, communicate, apply, evaluate and maintain policies and procedures to protect information accessed, processed or stored at remote sites and locations. Review and update the policies and procedures at least annually.


Login

Human Resources (HRS)

Level N/A

Establish and document procedures for the return of organization-owned assets by terminated employees.


Login