12. HealthSafe Network Security Policy

NETWORK SECURITY POLICY

VERSION HISTORY

Sl No	Version No.		Prepared by	Approved by	Description of Version	Date	Reason for Version Change
Sl No	From	To	Prepared by	Approved by	Description of Version	Date	Reason for Version Change
1	1.0	-	CISO	MD	First Release	14 Apr 2020	No changes made
1	1.0	1.1	CISO	MD	Updated	26 Jun 2021	Modifications due to changes in HealthSafe
1	1.1	1.2	CISO	MD	Reviewed	28 Jul 2022	Annual review
1	1.2	1.3	CISO	MD	Reviewed	15 Aug 2023	Annual review

DOCUMENT STATUS

Table of Contents

1 Purpose

2 Scope

3 Input

4 Output

5 Interacting Process

6 Abbreviations, Acronyms and Definitions

7 Procedure

8 Monitoring the Process

9 Records

PURPOSE
The purpose of this document is to establish and maintain a policy for network security for HealthSafe NZ.
SCOPE
These procedures applies to all aspects of the Network Security Policy
ABBREVIATIONS, ACRONYMS AND DEFINITIONS

Abbreviation	Description
CFO	Chief Financial Officer
IT	Information Technology Department
TL/PM	Team Lead / Project Manager
CISO	Chief Information Security Officer

4 INPUT

Required hardware and software

5 OUTPUT

Secured Computer systems

6 INTERACTING PROCESS

Admin, BA, Development, Testing

7 PROCEDURE

The IT team will provide maximum possible security for all production servers that protect from viruses, malware, DDoS attacks, and other attacks types

When there is a requirement to allow any non-default port traffic in to our solutions, requested by the Admin, BA, Development, Testing team, the IT team will record this in JIRA

8 MONITORING THE PROCESS

9 RECORDS