OpenStack Security Guide Documentation

Compliance Activites chapter additions

Bug #1341827 reported by Mike Lange
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Security Guide Documentation
Confirmed
Wishlist
Mike

Bug Description

Compliance Activities chapter additions and changes:

verify/adjust link for ISO
Try to expand Risk Assessment
Should be able to expand Backup and disaster recovery section
Add specific details about necessary Security Training (SOC, ISO, HIPAA)
Add language to Data Classification that may resonate better with the reader base.
Try to expand the Exception Process section

See original description
Tags: sec-guide
Mike Lange (mike-lange)
Changed in openstack-manuals:
assignee: nobody → Mike Lange (mike-lange)
Revision history for this message
Bryan D. Payne (bdpayne) wrote :

I understand that this is a placeholder for now, but please add some additional details about the improvements that we need to make here so that it is clear what the scope of this particular bug is. This will also help us better triage the bug.

Andreas Jaeger (jaegerandi)
tags: added: sec-guide
Changed in openstack-manuals:
importance: Undecided → Medium
Revision history for this message
Mike Lange (mike-lange) wrote :

General review and additions

verify/adjust link for ISO
Try to expand Risk Assessment
Should be able to expand Backup and disaster recovery section
Add specific details about necessary Security Training (SOC, ISO, HIPAA)
Add language to Data Classification that may resonate better with the reader base.
Try to expand the Exception Process section

Anne Gentle (annegentle)
description: updated
Changed in openstack-manuals:
status: New → Confirmed
Bryan D. Payne (bdpayne)
Changed in openstack-manuals:
assignee: Mike Lange (mike-lange) → nobody
Tom Fifield (fifieldt)
Changed in openstack-manuals:
importance: Medium → Wishlist
Revision history for this message
N Dillon (sicarie) wrote :

I would really like to see the following additions as well and how they tie in. I think that this could be an initial outline in the compliance chapter that is built out into project-specific items:

Auditing
   - CADF
   - openscap
   - stachtach
   - Congress

Revision history for this message
N Dillon (sicarie) wrote :

To clarify/finish that thought, those project-specific items could then be put in their own section in that project's chapter of the security guide.

Mike (mike-lange-e)
Changed in openstack-manuals:
assignee: nobody → Mike (mike-lange-e)
Revision history for this message
Lana (loquacity) wrote :

Hi Mike, any progress on this?

Revision history for this message
Mike (mike-lange-e) wrote : RE: [Bug 1341827] Re: Compliance Activites chapter additions

Hi Lana, mostly the same with this one. When I get the submission for the other bug, this one is next.

Thanks!

-Mike

-----Original Message-----
From: <email address hidden> [mailto:<email address hidden>] On Behalf Of Lana
Sent: Sunday, June 12, 2016 9:23 PM
To: <email address hidden>
Subject: [Bug 1341827] Re: Compliance Activites chapter additions

Hi Mike, any progress on this?

--
You received this bug notification because you are subscribed to the bug report.
https://bugs.launchpad.net/bugs/1341827

Title:
  Compliance Activites chapter additions

Status in openstack-manuals:
  Confirmed

Bug description:
  Compliance Activities chapter additions and changes:

  verify/adjust link for ISO
  Try to expand Risk Assessment
  Should be able to expand Backup and disaster recovery section
  Add specific details about necessary Security Training (SOC, ISO, HIPAA)
  Add language to Data Classification that may resonate better with the reader base.
  Try to expand the Exception Process section

To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-manuals/+bug/1341827/+subscriptions

Revision history for this message
Lana (loquacity) wrote :

OK, Mike. I await your patch! :)

Revision history for this message
Lana (loquacity) wrote :

Hi Mike, any update?

Ian Cordasco (icordasc)
affects: openstack-manuals → ossp-security-documentation
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.