T4.5.2 - SECURITY OF NETWORK SERVICES Implementation Guidance
The entity shall identify the security features, service levels, and management requirements of all network services and include these requirements in any network services agreement, whether these services are provided in-house or outsourced.
Back to T4.5.2 - P2 - SECURITY OF NETWORK SERVICES
The ability of the network service provider to manage agreed services in a secure way should be determined and regularly monitored, and the right to audit should be agreed.
The security arrangements necessary for particular services, such as security features, service levels, and management requirements, should be identified. The entity should ensure that network service providers implement these measures.
