Written Information Security Plan (WISP)
  • External Resources
  • 1. Introduction
    • 1.1 Purpose of the WISP
    • 1.2 Scope of the WISP
    • 1.3 Definitions
  • 2. Roles and Responsibilities
    • 2.1 Information Security Officer
    • 2.2 Other Roles and Responsibilities
  • 3. Policies and Procedures
    • 3.1 Access Control
    • 3.2 User Identification and Authentication
  • 4. Physical Safeguards
    • 4.1 Hardware Security
    • 4.2 Removable Media Devices
  • 5. Technical Safeguards
    • 5.1 Firewalls and Intrusion Detection Systems
    • 5.2 Malware Protection
    • 5.3 Encryption and Data Protection in Transit and at Rest
    • 5.4 Application and Database System Security
  • 6. Administrative Safeguards
    • 6.1 Risk Assessments and Analysis
    • 6.2 Security Training and Awareness
    • 6.3 Disaster Recovery and Business Continuity
  • 7. Incident Response and Management
    • 7.1 Incident Response Plan
    • 7.2 Notification Procedures
  • 8. Maintenance and Review of the WISP
    • 8.1 Review and Update Schedule
Powered by GitBook
On this page
  1. 1. Introduction

1.2 Scope of the WISP

This WISP is comprehensive and applies to all functions, operations, and employees of Vintti who handle, have access to, or are involved in the processing of our clients' sensitive data. This encompasses all our operations and activities, irrespective of the location of our employees. It covers administrative, technical, and physical safeguards implemented to prevent unauthorized access, use, disclosure, disruption, modification, or destruction of this information.

Previous1.1 Purpose of the WISPNext1.3 Definitions

Last updated 1 year ago