DS11.6 Security Requirements for Data Management

Establish arrangements to identify and apply security requirements applicable to the receipt, processing, physical storage and output of data and sensitive messages. This includes physical records, data transmissions and any data stored offsite.

Illustrative Controls and the TIBCO LogLogic Solution

Changes to data structures are authorized, made in accordance with design specifications and implemented in a timely manner.

To satisfy this control objective, verify that data structure changes adhere to the design specifications and that they are implemented in the time-frame required. Administrators can review data structure changes data such as alerts and reports.

Monitor and review all changes to data structures such as data using alerts and reports.

Reports and Alerts

Use the following link/reference to see the DS11.6 reports and alerts: DS11.6.