Zurück zu Downloads

Dokumente des ISMS der Beispiel-Firma Stadtsolutions als Vorlage für Ihr eigenes ISMS in englischer Sprache.

Changelog

Version 4

  • [DRAFT] SOP Core Business Process Software Development
    • Removed excess blanks.
  • [DRAFT] SOP Document Control
    • Added explicit statement in document control that the status of the released document must be set to "RELEASED".
  • [DRAFT] SOP Supplier Management
    • Improved paragraph on supplier specific risk management in supplier template.

Version 3

  • Record Legal Register
    • Corrected typo in the abbreviation of the Geschäftsgeheimnisschutzgesetz.
    • Changed "Telemediengesetz" against "Digitale-Dienste-Gesetz" (the law was renamed).
  • [DRAFT] Information Security Policy
    • Added climate change to context of the organisation and to the identified interested parties.
  • [DRAFT] SOP Core Business Process Software Operation
    • Added references to new videos.
  • [DRAFT] SOP Core Business Process Project Management
    • Added references to new videos.
  • [DRAFT] SOP Document Control
    • Added description of release process for working documents (no detailled header necessary)
  • [DRAFT] SOP Information Security Incident Management
    • Added references to new videos.
  • [DRAFT] SOP Supplier Management
    • Added references to new videos.
    • Added reference to A.8.26 to the requirements collection for the supplier.
  • [DRAFT] SOP Business Continuity Management
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for All Employees
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for CISO
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for Development Lead
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for IT Administrators
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for Operations Lead
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for Project Managers
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for HR
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for Office Management
    • Removed references to old videos.
    • Corrected typo ("take tare" -> "take care").
    • Added references to new videos.
  • [DRAFT] Policy on Information Security for Supervisors
    • Removed references to old videos.
    • Added references to new videos.
  • [DRAFT] Policy on Security Perimeters
    • Added references to new videos.
  • [DRAFT] Policy on Secure IT Infrastructures
    • Removed references to old videos.
    • Added references to new videos.
    • Corrected reference A.8.26 to A.8.20 and A.8.21.
  • [DRAFT] Policy on Asset and Access Management
    • Removed references to old videos.
    • Added references to new videos.

Version 2

  • [DRAFT] SOP Core Business Process Software Operation
    • Added (2022.A.8.32) as a reference to the "Create request for change" steps in the process.
  • [DRAFT] SOP Information Security Risk Management
    • draw.io diagram "Untitled Diagram.drawio" edited
  • [DRAFT] SOP Internal Audit
    • Corrected step name "Audit engagement finished" (was "Audit program engagement finished").
    • Exchanged mention of CISO against CISO role reference in last step.
    • Changed "Internal Auditor" mention to the role reference in 1st step.
  • [DRAFT] SOP Management Review
    • Corrected typos
    • Deleted duplicate references to corresponding standard requirement.
  • [DRAFT] Policy on Information Security for All Employees
    • Added warning note to email communication definition (email is not necessarily end-to-end protected).
    • Corrected typo.
    • Corrected typo "Ues" -> "Use".
  • [DRAFT] Policy on Information Security for CISO
    • Made section "Threat intelligence" mode understandable (just change of wording, no content change).
  • [DRAFT] Policy on Information Security for Development Lead
    • Rephrased a few paragraphs to be more precise. No requirement changes.
    • Corrected formatting.
  • [DRAFT] Policy on Information Security for IT Administrators
    • Rephrased a few paragraphs to be more precise. No requirement changes.
  • [DRAFT] Policy on Information Security for Project Managers
    • Made the the stakeholders of information security requirements for projects more precise: ourselves as well as project customers.
    • Changed the CISO reference in the document title table to the link to the CISO role