The summary of the statement
Metropolia University of Applied Sciences develops its information security in accordance with the cybersecurity management system. The purpose of this document is to document the scope of the university’s cybersecurity management system, as specified in the scope statement (this document). The cybersecurity management system is a systematic approach to creating, implementing, using, monitoring, reviewing, maintaining, and improving Metropolia’s information security, all aligned with the objectives set by the university. The current management model is based on risk assessment and the university’s acceptance levels for risks, designed for effective risk handling and management. By analyzing information asset protection requirements and implementing suitable technological, organizational, people, and physical control measures, successful implementation of the information security management model (ISMS) can be achieved. The scope statement is particularly aimed at external stakeholders who evaluate Metropolia’s level of information security and its processes. You can read the complete Scope Statement below.
| View file | ||||
|---|---|---|---|---|
|
Metropolian tietoturvan hallintamallin kattavuuslausunto suomeksi