Information Security Policies

CHAPTER 08

DEVELOPING AND MAINTAINING IN-HOUSE SOFTWARE

 

 

Section 0801

Controlling Software Code

 

 

Managing Operational Program Libraries

Managing Program Source Libraries

Controlling Software Code during Software Development

Controlling Program Listings

Controlling Program Source Libraries

Controlling Old Versions of Programs

 

 

Section 0802

Software Development

 

 

Software Development

Making Emergency Amendments to Software

Establishing ownership for System Enhancements

Justifying New System Development

Managing Change Control Procedures

Separating Systems Development and Operations

 

 

Section 0803

Testing & Training

 

 

Controlling Test Environments

Using Live Data for Testing

Testing Software before Transferring to a Live Environment

Capacity Planning and Testing of New Systems

Parallel Running

Training in New Systems

 

 

Section 0804

Documentation

 

 

Documenting New and Enhanced Systems

 

 

Section 0805

Other Software Development

 

 

Acquiring Vendor Developed Software

 

 

 

 


 

 

 

 

Further Information
Information security and ISO 17799 papers can be submitted via our contact page.