When to use this
Use this checklist to verify that endpoints connecting remotely meet security requirements before accessing organizational systems.
Related controls
Connection checklist
- Device identity is known.
- User identity is authenticated.
- MFA is enabled where required.
- Endpoint compliance is checked before access.
- Secure connection method is used.
- Untrusted wireless network guidance is communicated.
- Session timeout is configured.
- Local storage and cloud backup rules are followed.
Review table
| User/device | Access method | Compliance checked? | MFA? | Timeout | Gap/action |
|---|---|---|---|---|---|
| TBD | VPN/ZTNA/other | Yes/No | Yes/No | TBD | TBD |
- Template
- Iso27001
- Technological controls
- Endpoint security
- Remote access
Note Metadata
Aliases: Endpoint Remote Access Checklist
Source: 90 Templates/Remote Access and Endpoint Connection Checklist.md
Related Notes
- ISO 27001 A.5.15 - Access Control
- ISO 27001 A.6.7 - Remote Working
- A.8.1 Audit Evidence Pack
- ISO 27001 A.8.1 - User End Point Devices
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.1 Audit Checklist
- Templates MOC