Adequate Capacity Management Policy must be defined and implemented at the Company, in order to be possible to correctly monitor the performance of the existing or future Company systems, to forecast their future evolution and identify possible bottlenecks. Capacity Management represents a set of activities performed by the IT department and consists mainly in the following activities:
a. defining a set of performance parameters to be monitored for each major information system;
b. implement monitoring procedures for collecting data regarding the parameters above mentioned;
c. analyzing and interpreting of the results of monitoring;
d. support decisions related to upgrades and capacity increase.
These are further detailed in this policy.
The responsibility for the day-to-day management of the systems, identification and solving of current problems and performance tuning belongs directly to the respective system administrators.
The purpose of the capacity monitoring and analysis performed for these systems by the IT department addresses only their long-term evolution, identification of repetitive patterns, forecasting future evolution and development of models that could describe these evolutions in relation to forecasted workload levels and required performance parameters.
1.1 PROCEDURE OWNER
1.3 APPLICABLE REGULATIONS
1.4 RELATED [COMPANY] NORMS AND PROCEDURES
1.6 AUDIENCE AND SCOPE
1.7 DOCUMENT SUPPORT
2. DEFINITIONS & ABBREVIATIONS
3.1 IDENTIFICATION OF PARAMETERS TO BE MONITORED
3.2 COLLECTION OF DATA
3.3 INTERPRETATION OF DATA
6. FINAL CONSIDERATIONS
6.1 DISCIPLINARY ACTIONS AGAINST PROCEDURE VIOLATION
6.2 DOCUMENT REVISION
The objective of the Cryptographic Controls Standard is to outline the minimum information security controls which must be applied when cryptographic services and solutions are utilized by the Company. Specifically, this Standard focuses on key management requirements, acceptable algorithms, appropriate key lengths, and raises pertinent regulatory considerations relating to the use of cryptography.
The Software Patches Management Procedure defines the procedure of software upgrade and patches installation. It is applicable to IT department and more specific to the software under responsibility of IT department.