๐ผ A.16.1.3 Reporting information security weaknesses
- Contextual name: ๐ผ A.16.1.3 Reporting information security weaknesses
- ID:
/frameworks/iso-iec-27001-2013/16/01/03 - Located in: ๐ผ A.16.1 Management of information security incidents and improvements
Descriptionโ
Employees and contractors using the organizationโs information systems and services shall be required to note and report any observed or suspected information security weaknesses in systems or services.
Similarโ
- Internal
- ID:
dec-c-87fa1331
- ID:
Similar Sections (Give Policies To)โ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ NIST CSF v1.1 โ ๐ผ DE.DP-4: Event detection information is communicated | 30 | 33 | ||
| ๐ผ NIST CSF v1.1 โ ๐ผ PR.IP-12: A vulnerability management plan is developed and implemented | 7 | 8 |
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|