DS11.6 Security Requirements for Data Management
Establish arrangements to identify and apply security requirements applicable to the receipt, processing, physical storage and output of data and sensitive messages. This includes physical records, data transmissions and any data stored offsite.
Illustrative Controls and the TIBCO LogLogic Solution
Changes to data structures are authorized, made in accordance with design specifications and implemented in a timely manner.
To satisfy this control objective, verify that data structure changes adhere to the design specifications and that they are implemented in the time-frame required. Administrators can review data structure changes data such as alerts and reports.
Monitor and review all changes to data structures such as data using alerts and reports.
Copyright © Cloud Software Group, Inc. All rights reserved.