S 2.24 Introduction of a PC Checklist Booklet

Initiation responsibility: Head of IT Section, IT Security management

Implementation responsibility: IT-user

For documentation of the IT security measures taken with regard to a PC, it is expedient to introduce a PC Checklist Booklet in which the user can record the following:

• name of the PC user;

• site where the PC is installed;

• description of the configuration;

• access-granting means;

• hardware and software used;

• scheduled data backup intervals;

• maintenance work and repairs carried out;

• effected checks regarding computer viruses;

• time of password changes;

• available accessories;

• effected audits;

• point of contact in problematic cases;

• times of data backup.

The Additional Aids section of this IT Baseline Protection Manual contains a specimen of such a PC Checklist Booklet.

Where keeping of such a PC Checklist Booklet is mandatory, control activities will definitely be facilitated as all PC-relevant changes and IT security measures carried out will be documented in this booklet. Moreover, keeping of such a checklist provides the PC user with the required self-control for carrying out regular data backup, password changes and virus checks.