Policy-procedure detailing the arrangements in place to manage and control access to information throughout the organisation to prevent unauthorised access.
Procedure covers;
- Management of Risks Associated with Access Control
- Management of Access Control
- Access Control for Third Parties
- Use of secret authentication information
- Review of User Access Rights
- Access Control for IT Equipment
- User Responsibilities
[Information Classification: Business Use]