💼 A.12.5.1 Installation of software on operational systems
- ID:
/frameworks/iso-iec-27001-2013/12/05/01
Description
Procedures shall be implemented to control the installation of software on operational systems.
Similar
- Internal
- ID:
dec-c-6d186bb8
- ID:
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 DE.CM-5: Unauthorized mobile code is detected | 11 | 11 | no data | ||
| 💼 NIST CSF v1.1 → 💼 ID.AM-2: Software platforms and applications within the organization are inventoried | 5 | 7 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.DS-6: Integrity checking mechanisms are used to verify software, firmware, and information integrity | 22 | 26 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.IP-1: A baseline configuration of information technology/industrial control systems is created and maintained incorporating security principles (e.g. concept of least functionality) | 4 | 26 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.IP-3: Configuration change control processes are in place | 5 | 5 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (5)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS DMS Replication Instance Auto Minor Version Upgrade is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Instance Auto Minor Version Upgrade is not enabled🟠🟢 | 1 | 🟠 x1, 🟢 x6 | no data |
| 🛡️ Azure App Service does not run the latest Java version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest PHP version🟢⚪ | 🟢 x2, ⚪ x1 | no data | |
| 🛡️ Azure App Service does not run the latest Python version🟢⚪ | 🟢 x2, ⚪ x1 | no data |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-0d66ed99 | 1 | |
| ✉️ dec-x-879aa996 | 1 | |
| ✉️ dec-x-215302da | 1 | |
| ✉️ dec-x-a20e54a0 | 1 | |
| ✉️ dec-x-f82b9849 | 1 |