+ORP.1.A8 Managing Resources and Devices [IT Operation Department] (S)

1. Overview

ORP.1.A8 Managing Resources and Devices [IT Operation Department] (S)

All devices and resources that influence information security and are required to perform tasks and comply with security requirements SHOULD be available in sufficient quantities. Suitable verification and approval processes SHOULD take place before these devices and resources are used. Devices and resources SHOULD be listed in appropriate inventories. To prevent the misuse of data, the reliable deletion or destruction of devices and resources SHOULD be regulated (see CON.6 Deleting and Destroying Data and Devices).

Summary	Standard

1.1 References

1.2 Identified Requirements

1.2 Related Regulation

2. Identified Requirements

Requirements
Source	Requirement

3. Related Regulations

Regulations
Source	Regulation

ITGC -
Bundesamt für Sicherheiter in der Informationstechnik - IT-Grundschutzkompendium Stand 2022