1.13-Review Information Security Policies Constraint
Task Review Organizational information security policy and constraints¶
Conditions¶
Standards¶
During the pre-mission phase (and as part of the mission owner interview), request and review the organizations Information Technology (IT) and security policies and constraints. The IT policy documents can inform the CPT on whether (and under what conditions) VPN access is granted, removable media is used or how files are moved from one security fabric to another.