1 Reply Latest reply on Apr 2, 2020 7:25 AM by Bill Robinson

    GDPR compliance content for TSSA

    Ramon Vazquez
      Share This:

      Hi all,

       

      A customer with TSSA is interested on GDPR and ISO 27001 compliance content (component template).

       

      I've already found this about ISO 27001 TSSA / BSA compliance content for ISO 27001 I don't think there is nothing newer or ready to share from other customer projects.

       

      I can assume reply is equivalent for GDPR, but I found on Cloud Security there is some content related with GDPR https://docs.bmc.com/docs/display/PathPol/Release+Notes

      but reading mentioned Articles 24, 25, 30 & 32 I cannot see how this translates to technical checks.

       

      I'm also aware of the 'trick' to check for 'procedural' rules (like "is server in secured room") by creating a property and set values to yes/no or verified/pending; but sure those are not real checks, only helps a bit on integrated reporting.

       

      Any comment is welcome.

       

      Regards,

      Ramon