T7.6.2 - TECHNICAL REVIEW OF APPLICATIONS AFTER OPERATING SYSTEM CHANGES Implementation Guidance
The entity shall review and test business critical applications after changes in the operating systems.
Back to T7.6.2 - P3 - TECHNICAL REVIEW OF APPLICATIONS AFTER OPERATING SYSTEM CHANGES
This process should cover:
- A. Review of application control and integrity procedures to ensure that they have not been compromised by the operating system changes
- B. Ensuring that the annual support plan and budget will cover reviews and system testing resulting from operating system changes
- C. Ensuring that notification of operating system changes is provided in time to allow appropriate tests and reviews to take place before implementation
- D. Ensuring that appropriate changes are made to the business continuity plans
A specific group or individual should be given responsibility for monitoring vulnerabilities and vendors’ releases of patches and fixes.
Back to T7.6.2 - P3 - TECHNICAL REVIEW OF APPLICATIONS AFTER OPERATING SYSTEM CHANGES
