When to use this
Use this register to define required security mechanisms, service levels, and service requirements for network services.
Related controls
- A.8.21 Security of Network Services
- A.8.20 Networks Security
- A.5.20 Addressing Information Security Within Supplier Agreements
Requirements register
| Service | Provider | Owner | CIA need | Required security mechanisms | Service levels | Agreement reference | Monitoring evidence | Gap/risk |
|---|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | C/I/A | TBD | TBD | TBD | TBD | TBD |
Minimum checks
- Service owner identified.
- Security mechanisms defined.
- Service levels defined.
- Requirements are included in agreement or procedure.
- Monitoring evidence is defined.
- Template
- Iso27001
- Technological controls
- Network services
Note Metadata
Aliases: Network Service Requirements Register
Source: 90 Templates/Network Service Security Requirements Register.md
Related Notes
- ISO 27001 A.5.20 - Addressing Information Security Within Supplier Agreements
- A.8.21 Audit Evidence Pack
- ISO 27001 A.8.20 - Networks Security
- ISO 27001 A.8.21 - Security of Network Services
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- ISO 27002 Annex A Control Interpretation Map
- A.8.21 Audit Checklist
- Templates MOC