+ISMS.1.A13 Documentation of the Security Process (S)

1. Overview

ISMS.1.A13 Documentation of the Security Process (S)

The security process SHOULD be documented. Important decisions and the work results of
the individual phases, such as the security concept, policies, or findings resulting from
examinations of security incidents, SHOULD be documented adequately.
A procedure SHOULD be defined for the creation and archiving of documentation within the
framework of the security process. Rules SHOULD be in place to ensure that documentation is
kept up to date and confidential. The respective current versions of existing documents
SHOULD be available on short notice. Furthermore, all previous versions SHOULD be
archived centrally.

Summary	Standard

1.1 References

1.2 Identified Requirements

1.2 Related Regulation

2. Identified Requirements

Requirements
Source	Requirement

3. Related Regulations

Regulations
Source	Regulation

ITGC -
Bundesamt für Sicherheiter in der Informationstechnik - IT-Grundschutzkompendium Stand 2022