💼 A.12.1.2 Change management

• Contextual name: 💼 A.12.1.2 Change management
• ID: /frameworks/iso-iec-27001-2013/12/01/02
• Located in: 💼 A.12.1 Operational procedures and responsibilities

Description

Changes to the organization, business processes, information processing facilities and systems that affect information security shall be controlled.

Similar

• Internal
  • ID: dec-c-96febb5c

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 NIST CSF v1.1 → 💼 DE.AE-1: A baseline of network operations and expected data flows for users and systems is established and managed		10	11
💼 NIST CSF v1.1 → 💼 PR.IP-1: A baseline configuration of information technology/industrial control systems is created and maintained incorporating security principles (e.g. concept of least functionality)		4	14
💼 NIST CSF v1.1 → 💼 PR.IP-3: Configuration change control processes are in place		4	4

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags