Do you require a periodical authorization and validation (e.g. at least annually) of the entitlements for all system users and administrators (exclusive of users maintained by your tenants), based on the rule of least privilege? Jonathan van Driessen September 03, 2021 14:54 Yes, we do. Related articles Are you using cloud services to process customer data? Are these GDPR compliant? Do you use an automated source code analysis tool to detect security defects in code prior to production? Are policies and procedures established and mechanisms configured and implemented to protect the wireless network environment perimeter and to restrict unauthorized wireless traffic? Is personal data and confidential information that is stored in the cloud encrypted on database level? Is physical and logical user access to audit logs restricted to authorized personnel? Comments 0 comments Please sign in to leave a comment.
Comments
0 comments
Please sign in to leave a comment.