UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

LUL - S1737

Secure builds and configurations

inactive, Most Current
Organization: LUL
Publication Date: 1 March 2018
Status: inactive
Page Count: 6
scope:

This standard applies to information and IT networks that are owned, operated or supported by, or on behalf of, TfL.

'Endpoints' or 'devices' are physical equipment or virtual machines that use or store digital information to provide a service. This includes:

a) Servers, both physical and virtual b) Desktop devices including 'thick' and 'thin' clients

c) Portable devices including laptop and tablet computers (full OS)

d) Mobile devices including tablet computers and smartphones (lite OS)

e) Wearable devices including smart-watches and smart-glasses

f) Printers and multifunction devices that are connected to TfL's systems and networks

g) Removable media including USB, CDs or portable hard drives

h) Any peripherals and accessories used with any of the above that can store or process data including sensors, CCTV or devices that make up the Internet of Things (IoT)

i) Operational technology devices including intelligent electronic devices, remote terminal units, programmable logic controllers, sensors, actuators and meters.

Purpose

The purpose of this standard is to detail the security controls that must be in place to establish secure builds and configurations on all endpoints or devices used on TfL networks and how they must be implemented in line with the Secure builds and configurations policy.

Document History

S1737
March 1, 2018
Secure builds and configurations
This standard applies to information and IT networks that are owned, operated or supported by, or on behalf of, TfL. ‘Endpoints’ or ‘devices’ are physical equipment or virtual machines that use or...
S1737
October 1, 2016
Secure builds and configurations
This standard applies to information and IT networks that are owned, operated or supported by, or on behalf of, TfL.  ‘Endpoints’ or ‘devices’ are physical equipment or virtual machines that use or...

References

This document references:
S1746 - Cyber security testing
Published by LUL on March 1, 2018
The standard applies to information, Information Technology (IT) networks and Devices that are owned, operated or supported by TfL or on behalf of TfL. The standard is for use by system owners,...
This document references:
S1735 - Information Technology Access Control
Published by LUL on March 1, 2022
This standard applies to IT access control for all employees, third-party consultants and contractors. It also applies to TfL’s Information Technology team when controlling access through NGSD for...
This document references:
S1736 - Network Information Security
Published by LUL on March 1, 2022
This standard applies to all employees and third parties who have responsibilities for network, email and information transfer within TfL with specific focus on Infrastructure, Information...
This document references:
S1746 - Cyber security testing
Published by LUL on March 1, 2018
The standard applies to information, Information Technology (IT) networks and Devices that are owned, operated or supported by TfL or on behalf of TfL. The standard is for use by system owners,...
This document references:
S1740 - Cryptography
Published by LUL on March 1, 2022
Scope The standard applies to all Information Technology (IT), cyber security and technical employees who have responsibilities for cryptography protocols, implementation of security certificates and...
This document is referenced by:
S1741 - Cloud cyber security
Published by LUL on March 1, 2018
The standard applies to all cloud based services and data owned by TfL or operated and supported by third parties for or on behalf of TfL, unless otherwise stated in contracts or covered by business...
This document is referenced by:
S1752 - SSR Operational Technology: Cyber Security Protection
Published by LUL on November 1, 2018
This standard applies to TfL and LU staff, as well as Third Parties, when performing or overseeing O&M activities on SSR Operational Systems and Assets. This standard refers to the Cyber Security...
This document is referenced by:
G2406 - Firewalls security
Published by LUL on December 1, 2018
This guidance applies to all TfL staff, contractors and third party service providers contracted to undertake the implementation, operation and management of all network based firewall functionality...
This document is superseded by:
S1747 - Physical and Environmental Security of TfL's Information Technology
Published by LUL on March 1, 2022
This standard applies to all TfL employees as we are all equally responsible for our physical security and that of our employees. This Standard also applies to employees responsible for capturing,...
This document is superseded by:
S1747 - Physical and Environmental Security of TfL's Information Technology
Published by LUL on March 1, 2022
This standard applies to all TfL employees as we are all equally responsible for our physical security and that of our employees. This Standard also applies to employees responsible for capturing,...
This document is superseded by:
S1747 - Physical and Environmental Security of TfL's Information Technology
Published by LUL on March 1, 2022
This standard applies to all TfL employees as we are all equally responsible for our physical security and that of our employees. This Standard also applies to employees responsible for capturing,...
View Less
View All
Advertisement