...
Die nachfolgende Tabelle listet die Sicherheitsdomänen und ihre Subthemen auf:
Systems configuration 17
System segregation 17
Traffic filtering 17
Cryptography 18
2.2 IT Security Administration 18
Administration accounts 18
Administration information systems 18
2.3 Identity and access management 19
Authentication and identification 19
Access rights 19
2.4 IT Security Maintenance 20
IT security maintenance procedure 20
2.5 Physical and environmental security 21
Detection 22
Logging 22
Logs correlation and analysis 22
3.2 Computer Security Incident Management 22
Information system security incident response 22
13
Incident Report 23
Communication with competent authorities 23
Business continuity management 24
Disaster recovery management 24
3.2 Crisis management 24
Crisis management organization 24
Crisis management process 24
| Sicherheitsdomäne | Subthemen |
|---|---|
| #Governance_and_Ecosystem |
Information system security risk analysis, 14
Information system security policy 14
Information system security accreditation 14
Information system security indicators 15
Information system security audit 15
Human resource security 15
1.2 Ecosystem management 16
Ecosystem mapping 16
Ecosystem relations 16
Informationssicherheit Governance und Risikomanagement
Ecosystem management
| |
| #Protection | IT-Sicherheitsarchitektur
IT-Sicherheitsadministratoion
IT-Sicherheitswartung
Physische Sicherheit |
| #Defence | Erkennung
Computersicherheitsvorfallsmanagement
|
| #Resilience | Weiterführung des Betriebs
|
Annex 1
Links
- Link zum Dokument der ENISA: reference_document_security_measures