Link to records

anDREa's Access Control Policy applies.

Some documents, records especially, might not be accessible. Authorized access will be issued based on invitation by anDREa. Access requests will be rejected by default.

ISO 27001 related

Record	ISO 27001:2013
Records of training, skills, experience & qualifications	7.2
Monitoring and measurement results	9.1
Internal audit program	9.2
Results of internal audits	9.2
Results of the management review	9.3
Results of corrective actions	10.1
Logs of user activities, exceptions, & security events	A.12.4.1, A.12.4.3

Other

1. Core Access Register
   
2. Inventory of Assets
   
3. Policy Exceptions
   

1. Data Breach Register
   
2. Risk, Incident and Treatment Plan Register
   

1. Internal Audit Reports
   
2. Pentest reports
   
3. Risk assessment report
   

• Related Articles

• anDREa B.V. obtains ISO 27001 certification

  Replaced by: anDREa ISMS

• ISO 27001 - Overview & Statement of Applicability

  Replaced by: anDREa ISMS ---------------

• 20230601 CTO Report

  Below you can download the 2023-06-01 CTO-report

• 20230503 - Security Management Report

  anDREa's Security Officer annually provides the management board with the Security Management Report. An annual security management report is a key part of this auditing process. The report provides a summary of the organization's ISMS activities, ...

• 20230501 CTO Report

  Below you can download the 2023-05-01 CTO-report