Assurance: Make it Secure, Make it Audit-Proof
Administrative Control
Control Activity
Outcome
Encryption Standard: Laptops will be encrypted
On the first day of each quarter (Jan 1, April 1, July 1, Oct 1) [your tool] will check all laptops (AD Organizational Unit OU) to make sure they are encrypted. A list of laptops that fail the encryption check will be emailed to [helpdesk@yourtribe.com] which will automatically create a ticket in your support desk software and assign it to [administrator’s group]. The ticketing system will send an email to admins@yourtribe.com which will notify a distribution group that a ticket has been assigned for follow up.
Administrators perform follow up and resolve. They update the ticket with their results. Extra: re-run the encryption check until there are zero fails. Potential: identify a gap in an upstream process i.e. deployment process. Systems thinking approach.
Made with FlippingBook - Online catalogs