Journal Content

mail mail

Journal Content

ICT SECURITY LEVEL EVALUATION SYSTEM FOR NEW APPLICATIONS USING PAHANGNET NETWORK INFRASTRUCTURE

IMPLEMENTATION DATE : 1 JANUARY 2012

Implementation Objectives :

  1. To protect system applications from hackers' attack

  2. To Prevent data loss or theft by hackers

  3. To ensure data integrity in the  application system is constantly protected 

  4. To increase consumer confidence in the security level of the  application systems used

     

 Implementation Scopes :

  1. All agencies are connected to the PahangNet network

  2. All systems implemented for access by various agencies to PahangNet network or Agencies outside PahangNet network. It includes :

  • All New Web application systems developed in-house or outsourced (Outsourced to Vendors or Outsourced from Ministries / Federal Departments);

    and
     
  • All New Web Application Systems accessed from the Intranet (Access through PahangNet network by various  Agencies Utilising PahangNet) alone or the Internet (Access from outside PahangNet) only or both.

  1. Exceptions for :

  • Web Application Systems for access within the Agency's Office and does not involve agency branches in other locations (LAN Access)

  • Client Server Applications System

  • Web Application System for standalone access for selected PCs with installed system and database.

Agencies Involved:

1. All SUK Pahang Division / Unit Offices
2. All Pahang State Government Department
3. All Pahang District and Land Office
 
Implementation Team
Pahang  Security Posture Assessment Team Assisted by the CERT Pahang Team
 
Work Process:
Refer to the ‘ICT System Application Security Level Assessment Operation Guideline'


Supporting Documents :

BIL


SUBJECT


DOWNLOAD

1. 

ICT Security Applications  Assessment Implementation Instruction  Letter

 

2.


ICT System Application Security Level Assessment  Operational Guidelines Update: 6 May 2013

t
3.


SPA - SYSTEM-01: ICT Application System Security Level Assessment Applications Form 

4.

 

SPA - SYSTEM -02:  ICT Application System  Security Level Assessment Report Format

Private Document

 

Journal Content

You need to log in order to view this private document.