nexus/security-policies
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
9 commits 1 branch 0 tags 38 KiB
Find a file
Nina Seidel 06d4787d9a Incident response: add GDPR 72h notification requirement
2026-04-28 14:00:00 +00:00
policies Password policy: add YubiKey guidance for prod access 2026-04-14 09:30:00 +00:00
procedures Incident response: add GDPR 72h notification requirement 2026-04-28 14:00:00 +00:00
standards Add data classification standard 2026-02-24 11:00:00 +00:00
training Add Q2 2026 security awareness training module list 2026-04-01 10:00:00 +00:00
README.md Initial security policy documents 2026-01-07 09:00:00 +00:00

README.md

nexus/security-policies

Information security policies and procedures for Nexus Corp.

Internal use only. Do not distribute outside the organisation.

Document index

Document Owner Version Last reviewed
Password Policy InfoSec 2.1 2025-10
Access Control Policy IT Security 1.4 2025-10
Incident Response SOC 1.2 2025-11
Vulnerability Management AppSec 1.1 2025-12
Data Classification Compliance 1.0 2026-01
Acceptable Use HR/Legal 3.0 2025-10
Remote Work HR 2.2 2026-01

Review schedule

Policies are reviewed annually or after significant incidents. All reviews require sign-off from the CISO.