laage.blogg.se

Information security responsibilities are allocated in line with information security policies in place.

The organization of information security for ESET PROTECT Cloud consists of multiple teams and individuals involved in information security and IT, including: Non-compliance with information security policies is subject to disciplinary actions for ESET employees or contractual penalties up to contract termination for suppliers.

Policies are reviewed annually and updated after significant change to ensure their continuing suitability, adequacy, and effectiveness.ĮSET performs annual reviews of this policy and internal security checks to ensure consistency with this policy. Information Security PoliciesĮSET uses information security policies to cover all aspects of the ISO 27001 standard, including information security governance and security controls and practices. Applied security practices and security controls are intended to overlap and complement each other.

Therefore, the concept of information security uses the ISO 27001 framework to implement a layered defense security strategy when applying security controls on the layer of the network, operating systems, databases, applications, personnel, and operating processes. company is ISO 27001:2013 certified with integrated management system scope explicitly covering ESET PROTECT Cloud, EBA, and EMA services. Information security aspects of business continuity managementĮSET s.r.o.Information security incident management.System acquisition, development, and maintenance.The scope of this document is to summarize security practices and security controls for ESET PROTECT Cloud infrastructure, ESET Business Account (hereinafter referred to as "EBA"), and ESET MSP Administrator (hereinafter referred to as "EMA") infrastructure, organization, personnel, and operational processes. Note that security practices and controls may change. Security practices and controls are designed to protect customer information confidentiality, integrity, and availability. The purpose of this document is to summarize the security practices and security controls applied within ESET PROTECT Cloud.