Professional Documents
Culture Documents
TPNFL
TPNFL
S.no
S.no
6
7
8
7
2.3 Asset Management
S.no
2
2.4 Logical Access Control
S.no
1
2.5 Endpoint Security
S.no
Observation
We Observed that, Information security and cyber security policy is not available
Observation
Observation
It was observed asset inventory is not avaliable and assets are not categorized
based on their criticality.
Assets are not labbed based on their criticality
Observation
Reviews of User logs are not mainted in periodic intervals
Observation
Impact Risk Rating
Medium
Medium
High
High
Medium
High
Medium
HIGH
Medium
Management
Recommendation
Response
Management
Recommendation
Response
Management
Recommendation
Response
Management
Recommendation
Response