<< Click to Display Table of Contents >> Navigation: Help > Cloud/SaaS Topics > SaaS/Cloud - IT Compliance > Server Rights Management |
Are roles and responsibilities to handle information security defined?
•Yes, 4Net have a CISO who takes care of information security. He works close with a IT Security Committee (CEO, CISO, CTO, Head of Datacenter) that takes care for 4Net’s IT Security.
Is the least privilege principle implemented?
•4Net has administrative access to all Rotronic systems. This access can be used by all technicians to cover incidents 7/24.
Is a process to provision and deprovision access rights in place.
•Yes.
Are advanced authentication mechanisms for administrator and high privilege accounts implemented:
•The administrative access to the underlaying platform of RMS Cloud is protected with multifactor authentication.