Table of Contents
Advertisement
OE.INTERFACE.MANAGED
4.2.2
Non-IT Environment
OE.PHYSICAL.MANAGED Physical management
OE.USER.AUTHORIZED
OE.USER.TRAINED
OE.ADMIN.TRAINED
OE.ADMIN.TRUSTED
OE.AUDIT.REVIEWED
Copyright (c) 2012 RICOH COMPANY, LTD. All rights reserved.
The IT environment shall take a countermeasure for the prevention of unmanaged
access to TOE external interfaces.
According to the guidance document, the TOE shall be placed in a secure or monitored
area that provides protection from physical access to the TOE by unauthorised persons.
Assignment of user authority
The responsible manager of MFP shall give users the authority to use the TOE in
accordance with the security policies and procedures of their organisation.
User training
The responsible manager of MFP shall train users according to the guidance document
and ensure that users are aware of the security policies and procedures of their
organisation and have the competence to follow those policies and procedures.
Administrator training
The responsible manager of MFP shall ensure that administrators are aware of the
security policies and procedures of their organisation; have the training, competence,
and time to follow the guidance document; and correctly configure and operate the TOE
according to those policies and procedures.
Trusted administrator
The responsible manager of MFP shall select administrators who will not use their
privileged access rights for malicious purposes according to the guidance document.
Log audit
The responsible manager of MFP shall ensure that audit logs are reviewed at appropriate
intervals according to the guidance document for detecting security violations or
unusual patterns of activity.
Management of external interfaces in IT environment
Page 40 of 93
- Quick Links:
- St Reference
- Toe Overview
- Basic Functions
Hide quick links:
Advertisement
Table of Contents
