An Access Policy define how to protect information by controlling the access rights for different types and classifications of information and protect against to unauthorised access.
Access Policy does not only explain how to access the information, but also set the minimum requirements for creating strong passwords, protecting the passwords and changing requirements of the passwords.
You can present a set of password rules to your employees through the Access Policy. You will also define the access rights, user responsibilities and access control steps in the organisation through this document.
This policy mention applying different kind of access controls such as:
- Passwords
- Employee access
- Operating systems access control
- Application & Information access
If you are managing or implementing and Information Security Management System in your organisation, this document will be one of the key elements to show that your management system is working correctly.
You can also use our Acceptable Use Policy in addition to this policy, to enrich your information security precautions.
This document can be purchased individually or as part of a package. If you are implementing a management system based on one or more of the main ISO standards, then our management system packages might be more cost effective.
Our standard management system packages cover a combination of ISO 9001, ISO 14001, ISO 27001 and ISO 45001. However, additional standards can easily be included if needed.
