When to use this
Use this record to show business, system owner, and security approval of application security requirements.
Related controls
Approval record
| Application | Requirement set/version | Business owner | Security approver | Legal/privacy input | Approval date | Conditions |
|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | TBD | TBD | TBD |
Minimum checks
- Requirement set is versioned.
- Business owner approved.
- Security approver reviewed.
- Legal/privacy input included where relevant.
- Conditions or exceptions are documented.
- Template
- Iso27001
- Technological controls
- Application security
Note Metadata
Aliases: AppSec Requirements Approval
Source: 90 Templates/Application Security Requirements Approval Record.md
Related Notes
- A.8.26 Audit Evidence Pack
- ISO 27001 A.8.26 - Application Security Requirements
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.26 Audit Checklist
- Application Security Requirements Register
- Templates MOC