Recently Updated Pages

The institution shall divide the area it manages into security zones based on risk assessment t...

Compliance to these guidelines is highly encouraged at all sector and institutional levels in ord...

Users shall ensure proper use of digitalization equipment in accordance with all provisions of ...

Institutional devices used by employees shall be labeled (tagged), recorded and proper naming sha...

These guidelines shall be strictly adhered to by all government institutions, including instituti...

Adoption of these guidelines will allow government institutions to: Have a high quality and re...

These guidelines aim at providing a uniform framework for the design, configuration, and manageme...

Based on the assessed current situation, a gap matrix shall be developed to highlight shortages i...

The desired situation and attainable targets shall be defined within a period of 3-5 years. The t...

The institution shall identify and meet the requirements for preserving privacy and protecting PI...

The institution shall identify, report, and correct system security flaws on time. The institu...

The institution shall create and retain system audit logs and records to the extent needed to ena...

The institution shall ensure that executives, senior management, managers, systems administrators...

The institution shall limit system access to authorized users, processes acting on behalf of au...

Install and configure gateway firewall. Configure inbound and outbound Access Control List (AC...

The public institution shall as a minimum have a documented Information Security Policy (ISP) bas...

Objective: Ensure secure handling of user certificate passwords. Guidelines: Do not store us...

Objective: Validate the authenticity and integrity of digital signatures, including Long-Term Va...

Objective: Ensure your system correctly performs the certificate validity check. Guidelines:  ...

Objective  Prevent the use of expired certificates in your system. Guidelines Automatically ...