{{ ctx.nhits | number }} record

{{ ctx.nhits | number }} record

Active filters

No active filters

Filters

Information security requirements

A list (requirements library) of non-functional requirements to be based on when an IT procurement is to be carried out within Umeå municipality. This dataset includes the information security requirements. The different levels 1, 2 and 3 represent the level of possible damage that can occur if any of the aspects Confidentiality, Correctness or Accessibility is not maintained.


Level 1: Moderate damage - It is sufficient that one of the following is met:


No noticeable major difficulties for the business to achieve the goals.

No impact on socially important functions at one's own or another organization.

Individuals or other authorities and organizations can note the disturbance or experience mild problems but without demonstrable financial impact.

Individual personal data of a non-sensitive nature may be disseminated and cause moderate damage to personal privacy.

 


Level 2: Significant damage - It is sufficient that one of the following is met:


The business can fulfill its tasks, but with a probable risk of a significant impact (financially or through the need to take extraordinary measures).

Other authorities and organizations may be affected (financially or through the need to take extraordinary measures). Socially important functions in one's own or another organization are probably not affected.

Individuals may experience consequences, such as major discomfort or major financial impact, of the disorder.

Personal information can be spread and cause significant damage to personal privacy

 


Level 3: Serious injury. It is sufficient that one of the following is fulfilled:


Creates great difficulties for the organization's activities. Impossible or almost impossible to complete the missions.

Socially important functions in one's own or another organization are likely to be affected.

Individuals' lives and health are endangered.

Sensitive personal data can be widely disseminated and cause serious damage to personal privacy

The list of requirements is updated at least once a year, possibly more often. For questions, contact: IFkrav@umea.se.

Dataset Identifier
informationssakerhetskrav
Downloads
{{ ctx.dataset.extra_metas.explore.download_count | number }}
Territory
Last processing
{{ ctx.dataset.metas.metadata_processed|formatMeta:'datetime' }} (metadata)
{{ ctx.dataset.metas.data_processed|formatMeta:'datetime' }} (data)

Dataset schema

JSON Schema

The following JSON object is a standardized description of your dataset's schema. More about JSON schema.

Edit in advanced mode