Doc Register

Document IDTitlePathOwnerApproverVersionEffective dateNext reviewClassificationNotes
DPWAT-ISMS-GOV-001ISMS Scope01.01-isms-scopeISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-GOV-002Context of the Organization & Interested Parties01.02-context-and-interested-partiesISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)12 months after effective date (or on major change)Internal
DPWAT-ISMS-POL-001Information Security Policy01.03-information-security-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-GOV-003Roles, Responsibilities, and Authorities01.04-roles-responsibilities-and-authoritiesISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)12 months after effective date (or on major change)Internal
DPWAT-ISMS-GOV-004Control of Documented Information01.05-control-of-documented-informationISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-GOV-005Information Security Objectives01.06-information-security-objectivesISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (during management review, or on major change)Internal
DPWAT-ISMS-GOV-006Competence, Awareness, and Training01.07-competence-awareness-and-trainingISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01Internal
DPWAT-ISMS-GOV-007ISMS Communication01.08-isms-communicationISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-012027-02-01 (or on major change)InternalDefines what/when/whom/who/how for ISMS communications (ISO 27001 clause 7.4)
DPWAT-ISMS-RISK-001Risk Management Methodology02.01-risk-management-methodologyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or after major incident/change)Internal
DPWAT-ISMS-POL-002Acceptable Use Policy (AUP)03.01-acceptable-use-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-003Access Control Policy03.02-access-control-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-004Asset Management & Information Classification Policy03.03-asset-management-and-classification-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-005Cryptography & Secrets Policy03.04-cryptography-and-secrets-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-006Secure Development Policy03.05-secure-development-policyProcess Owners (RA) + CISO — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-007Supplier Management Policy03.06-supplier-management-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-008Incident Management Policy03.07-incident-management-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-009Business Continuity & Availability Policy03.08-business-continuity-and-availability-policyAdministrator (ADM) + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-010Logging & Monitoring Policy03.09-logging-and-monitoring-policyAdministrator + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-011Vulnerability Management Policy03.10-vulnerability-management-policyAdministrator + Process Owners — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-012Physical Security Policy03.11-physical-security-policyAdministrator + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-013Privacy & PII Protection Policy03.12-privacy-and-pii-policyCISO — Timo Andreas Bejan (legal contact as applicable: Administrator (ADM) — Anna Boros)Administrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-014Policy Exceptions & Risk Acceptance03.13-policy-exceptions-and-risk-acceptanceISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-015AI Acceptable Use Policy03.14-ai-acceptable-use-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-POL-016Segregation of Duties & Dual Control Policy03.15-segregation-of-duties-and-dual-control-policyISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-001People: Onboarding, Offboarding, and Third Parties04.01-people-onboarding-offboarding-and-third-partiesAdministrator + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-002Access Requests, Changes, and Offboarding04.02-access-request-changes-and-offboardingAdministrator + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-003Change Management04.03-change-managementProcess Owners (RA) + Administrator — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-004Backup and Restore04.04-backup-and-restoreAdministrator — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-005Incident Response Procedure04.05-incident-responseISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-006Supplier Onboarding and Review04.06-supplier-onboarding-and-reviewISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-007Log Review Procedure04.07-log-reviewAdministrator + CISO — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-008Vulnerability and Patching Procedure04.08-vulnerability-and-patchingAdministrator + Process Owners — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or on major change)Internal
DPWAT-ISMS-PROC-009Internal Audit Procedure04.09-internal-auditISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01Internal
DPWAT-ISMS-PROC-010Management Review Procedure04.10-management-reviewAdministrator (ADM) — Anna Boros; Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01 (or more often if needed)Internal
DPWAT-ISMS-PROC-011Nonconformity and Corrective Action04.11-nonconformity-and-corrective-actionISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-01 (ISMS go-live date for baseline documentation set)2027-02-01Internal
DPWAT-ISMS-REG-001Authorities Contact Registerauthorities-contact-registerISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-012027-02-01 (or when contacts change)InternalReview annually or when authority contact details change
DPWAT-ISMS-REG-002Customer Project Registercustomer-project-registerISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-012027-02-01 (or on project changes)InternalDocuments customer projects and data access levels; informs risk assessment
DPWAT-ISMS-TPL-001Project Security Checklisttemplate-project-security-checklistISMS Manager / CISO (RMSI) — Timo Andreas BejanAdministrator (ADM) — Anna Boros1.02026-02-012027-02-01InternalUse at project kickoff and closure