Page 114 - GiGW3
P. 114

Annexure II












               S/N      Security Guidelines                                                  Risks Addressed


                        Ensure that the website, web application, web portal or mobile
                        app is Security Audited and an Audit Clearance certificate is
                 1                                                                                S1- S15
                        issued by NIC, STQC or a CERT-In empanelled vendor before
                        hosting in production environment.



                        Hosting Environment must be secured for ensuring
                 2                                                                                S1- S15
                        confidentiality, integrity and availability (CIA).



                        Website has the Security Policy, Privacy Policy and the
                 3      Contingency Management Plan clearly defined policies and                   S1- S15
                        plans approved by the government organisation.























































                                                            114
   109   110   111   112   113   114   115   116   117   118   119