This Control has the following implementation support Control(s):
Identify the target audience for compliance documents., CC ID: 06108
Define the structure for compliance documents and governance documents., CC ID: 06111
SELECTED AUTHORITY DOCUMENTS COMPLIED WITH
This section describes ideal and typical requirements and methods for documentation of the security process. The documentation process can and should be adapted depending on the selected IT- Grundschutz approach and the present framework conditions. In particular for the Basic Protection, the docume… (§ 5 ¶ 2, BSI-Standard 200-2 IT-Grundschutz Methodology, Version 1.0)
In the various steps of the information security process a multitude of various reports, concepts, policies, notifications on security-relevant events and further documents on information security of the organisation are created. The documents must be meaningful and understandable for the correspond… (§ 5.2 ¶ 1, BSI-Standard 200-2 IT-Grundschutz Methodology, Version 1.0)
The organization should be appropriate for the message the client wants to get across. (§ 102(a)(2), House Legislative Counsel's Manual on Drafting Style, 104th Congress, 1st Session)
