💼 A.12.1.2 Change management
- ID:
/frameworks/iso-iec-27001-2013/12/01/02
Description​
Changes to the organization, business processes, information processing facilities and systems that affect information security shall be controlled.
Similar​
- Internal
- ID:
dec-c-96febb5c
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed | 10 | 34 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.IP-1: A baseline configuration of information technology/industrial control systems is created and maintained incorporating security principles (e.g. concept of least functionality) | 4 | 26 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.IP-3: Configuration change control processes are in place | 5 | 5 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|