|
+PS-08.01B |
1. ÜbersichtPS-08.01BBased on a risk assessment according to OIS-07, security requirements for office environments are documented, communicated and provided in accordance with SP-01. The security requirements for rented offices take into account proportionality and appropriateness, potentially being less extensive than those in own office environments. These security requirements encompass various aspects for a safe and secure working environment, including at least:1. Physical access controls, such as key cards and biometric scanners, for office buildings; 2. Use of screen locks and privacy screens for workstations; 3. No openly visible confidential data at temporarily unattended workstations; 4. Disposal of all company documents that are no longer required within the company premise; 5. Prohibition of the use of third party equipment; and 6. Securing the entrances of office premises with alarm systems and surveillance cameras. As a result of the risk assessment in accordance with OIS-07, not every aspect listed in the criterion may need to be addressed by corresponding security requirements. For example, if there are no assets related to the development or operation of the cloud service in an office building, alarm systems and surveillance cameras may not be required.
1.1 Referenzen1.2 Identifizierte Anforderungen1.2 Related Regulation2. Identifizierte Anforderungen
3. Related Regulations
|