1.5 Data Security (5)
【Capability Question】
Do you have a documented Data Security policy and associated controls to cover CSP data?
If yes, how long has this been in place?
How often is this reviewed?
您是否有記錄在案的數據安全策略和相關控制件來涵蓋 CSP 數據?
如果是,這已經存在了多長時間?
多久審查一次?
【Current State】
No, Product Manager is currently responsible for establishing and auditing account access and verbally informing you of the job rules and the Data Security policy to be aware of
否,目前由 Product Manager 負責建立與稽核帳號的存取,並口頭告知作業規定與應注意的 Data Security policy
【Future State (if applicable)】
Will specify the Data Security policy document and SOP process for associated controls and auditing.
將擬訂書面的 Data Security policy ,並繪製 SOP 流程來進行 associated controls 與稽核
【List of supporting evidence】
近期留言