This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IS27001

Danny Chaplin over 7 years ago

Anyone ISO27001 and use a Sophos XG, keen to see what people have in place and how they manage this.

Backups - Auto in place

Firmware Upgrades - Auto in place

User Access - check monthly

VPN Access - check monthly

Review of firewall logs checking monthly but wanted to see how any one else manages this i currently disable any rules not showing traffic and then a month later delete the rule. but been keen to see how others review block attempts are blocked and not much action can be taken.

Also outbound rule LAN to WAN Services ANY do you all remove this default rule and create a rule for each outbound service or just use the standard rule and have IPS and Webcontrols.

This thread was automatically locked due to age.