Software policy

Software security

Purpose

This policy sets out the guidelines for the acquisition, installation, usage, management, and security of software across Agile Collective to ensure systems are secure, up-to-date, and protected against cyber threats.

Scope

This policy applies to:

Policy

Approved software

Only software that is authorised and approved by the Tech circle should be installed on company devices.

Software Installation and Removal

Installation by developers

Developers are granted controlled autonomy in installing additional software necessary for their work, provided that certain security checks are performed and documented. The following conditions apply:

Software patching and updates

Developer responsibilities

All software installed by developers must be regularly patched and updated to the latest versions to mitigate security risks. Developers are responsible for ensuring that software they install remains up-to-date.

Access control

Developer access privilieges

Incident reporting

Member and employee responsibilities

Exceptions

Monitoring and review

Last updated: