Operating procedures for information processing facilities should be documented and made available to personnel who need them.
This control emphasises the notion that all employees within the organisation follow a well-defined procedure while conducting different operations.
Documented procedures should be prepared for the organisation's operational activities associated with information security, for instance:
AvISO will be updating and reviewing all the information regularly, so keep us bookmarked and keep checking!
Got a question or need help? Don't hesitate to reach out to our team.
If you would like to know more about ISO Standards, Certification and the value of a good management system you can add to your business we would love to hear from you: Kent: 01892 800476 | London: 02037 458 476 | info@avisoconsultancy.co.uk