3. Table of Contents
1 Introduction.............................................................................................................................1
2 Purpose 1
3 Resource Requirement............................................................................................................1
3.1 Appointment.........................................................................................................................1
3.2 Staff/ Training.......................................................................................................................1
4 Audit 1
5 Security 1
6 Forms 2
7 General Instructions................................................................................................................2
4. Standard Operating Procedure for
Information security
Page 1 of 2
Precision Electronics Limited Doc No. : IT/SOP/....... Date: 01-11-2014 Rev.: 1.0
1 Introduction
This document provides guidance and describes the standard operating procedures for
the Computer/IT Security involved for the security implementation process.
2 Purpose
The purpose of this document is to facilitate adoption of standard operating
procedures for Information system by all the employees of ILDC
3 Resource Requirement
3.1 Appointment
Indian Citizen to be appointed/nominated as Cyber Information Security Officer
(CISO) who will take care of all security measures of IT system for ILDC
3.2 Staff/ Training
1. Implementation of security measures by providing training related to security to
the employess time to time
2. Implementation for Level of Concern for Confidentiality (R.A..Asset Sheet)
3. For Accessing the ERP, Data Backup in Common derives.
3.3. Log maintain
Proper log of User for Login & Accessing the Data from main Server
4 Audit
• Annually Cyber Security Audit
5 Security
1. Type of security related to Network, Application (ERP, etc.), Information/data
protected by all protection means i.e. password, maintain proper log etc.
2. Note books, Laptops, electronic recording media etc protected by means of
password , user login.
3. All PC/Laptop must have Antivirus
4. Log Entry for use of Internet for all concern department on separate PC
5. No user can run the .exe file without permission.
6. Separate system for incoming storage media/software
IT-F-27
Rev No.: 01, Date: 01-11-2014
5. Standard Operating Procedure for
Information security
Page 2 of 2
Precision Electronics Limited Doc No. : IT/SOP/....... Date: 01-11-2014 Rev.: 1.0
6 Forms
Proper Forms (Ref.number) maintain for user (responsibility) to adhere to
Information security Guidelines
7 General Instructions
The following safety and precautions must be ensured for the safe operation :
1. No use of Pen Drive, CD, DVD etc. (Data migration)
2. Cabinet (PC/Laptop) are protected by passwords
3. All types firewall always ON when in use.
4. No use of Internet in PC containing the official documents
5. Before creating user id HR Deptt. send email about particular user
creation/termination, change of roles through LDAP server
1 Point Of Contact
CISO
9 Enforcement
Any employee found to have violated this policy may be subject to disciplinary action, up to
and including termination of employment.
IT-F-27
Rev No.: 01, Date: 01-11-2014
6. Standard Operating Procedure for
Information security
Page 2 of 2
Precision Electronics Limited Doc No. : IT/SOP/....... Date: 01-11-2014 Rev.: 1.0
6 Forms
Proper Forms (Ref.number) maintain for user (responsibility) to adhere to
Information security Guidelines
7 General Instructions
The following safety and precautions must be ensured for the safe operation :
1. No use of Pen Drive, CD, DVD etc. (Data migration)
2. Cabinet (PC/Laptop) are protected by passwords
3. All types firewall always ON when in use.
4. No use of Internet in PC containing the official documents
5. Before creating user id HR Deptt. send email about particular user
creation/termination, change of roles through LDAP server
1 Point Of Contact
CISO
9 Enforcement
Any employee found to have violated this policy may be subject to disciplinary action, up to
and including termination of employment.
IT-F-27
Rev No.: 01, Date: 01-11-2014