MRP SYSTEM SECURITY CHECKLIST Created by ChecklistGuro (https://checklistguro.com) --- USER ACCESS CONTROLS --- [ ] Default User Role Assignment Policy (Automatic based on department, Manual assignment by administrator, Hybrid approach) [ ] Sensitive Data Access Restrictions (Cost data, Supplier contracts, Production schedules, Inventory levels) [ ] New User Approval Process (Immediate, Manager Approval, Security Team Approval) [ ] Maximum Concurrent User Sessions Allowed [ ] Last User Access Review Date [ ] Details of User Access Review Process --- PASSWORD MANAGEMENT --- [ ] Minimum Password Length [ ] Password Complexity Requirements (Uppercase Letters, Lowercase Letters, Numbers, Special Characters) [ ] Password Expiration Time (Days) [ ] Last Password Policy Review Date [ ] Password Policy Documentation Link/Location [ ] Password Reset Method (Self-Service, Administrator Assisted) [ ] Number of Password Reuse Prevention --- DATA ENCRYPTION --- [ ] Encryption Method Used: (AES-256, RSA, Triple DES, Other (Specify)) [ ] Specify Other Encryption Method (if applicable): [ ] Data Encrypted at Rest? (Yes, No, Partial) [ ] Data Encrypted in Transit? (Yes, No, Partial) [ ] Encryption Key Rotation Period (Days): [ ] Description of Key Management Process: [ ] Encryption Policy Document (Optional): --- AUDIT TRAILS & LOGGING --- [ ] Describe Audit Trail Configuration [ ] Maximum Audit Log File Size (MB) [ ] Audit Log Storage Location (Local Server, Cloud Storage, Dedicated Logging Server) [ ] Last Audit Log Review Date [ ] Frequency of Automated Audit Log Summaries [ ] Key Events Being Logged (e.g., User Login, Data Changes) [ ] Audit Log Retention Policy (3 Months, 6 Months, 12 Months, Custom) --- NETWORK SECURITY --- [ ] Firewall Rule Count [ ] Firewall Vendor (Cisco, Fortinet, Palo Alto, Other) [ ] Network Segmentation Strategy [ ] VPN Usage (Enabled, Disabled) [ ] Last Firewall Rule Review Date [ ] Intrusion Detection/Prevention Systems (IDS/IPS) (Enabled, Disabled) [ ] Description of Network Access Control (NAC) Implementation --- BACKUP AND RECOVERY --- [ ] Backup Frequency (Daily/Weekly/Monthly) [ ] Last Successful Full Backup Date [ ] Last Successful Incremental Backup Date [ ] Backup Storage Location (e.g., cloud, on-site server) [ ] Backup Retention Period (in days) [ ] Offsite Backup Enabled ([object Object]) [ ] Disaster Recovery Plan Documentation Location (Link/File) --- SYSTEM PATCHING & UPDATES --- [ ] Last Patch Applied Date [ ] MRP System Version [ ] Patch Notes/Description (including version number) [ ] Next Scheduled Patch Review Date [ ] Patch Source (e.g., Vendor, Internal) (Vendor, Internal IT) [ ] Number of Critical Patches Pending --- INTEGRATION SECURITY --- [ ] Describe Integration Points [ ] Integration Method (API, File Transfer, Database Link) (API, File Transfer (SFTP, FTP), Database Link) [ ] Encryption Strength (e.g., TLS version) [ ] Data Validation Checks Performed (Data Type Validation, Format Validation, Range Validation, Mandatory Field Check) [ ] Last Integration Security Review Date --- VENDOR ACCESS & MANAGEMENT --- [ ] Vendor Access Method (VPN, Direct Access (Controlled), Web Portal) [ ] Number of Active Vendor Users [ ] Last Vendor Access Review Date [ ] Justification for Vendor Access Level [ ] Data Access Permissions Granted (Read Only, Limited Edit, Full Access) [ ] Vendor Access Agreement (Signed) [ ] Specific Security Protocols Shared with Vendor --- SECURITY AWARENESS TRAINING --- [ ] Describe phishing recognition techniques taught. [ ] Which topics were covered in the training? (Password Security, Phishing Awareness, Data Privacy, Malware Prevention, Social Engineering, Physical Security) [ ] Date of training completion. [ ] Score on post-training quiz (if applicable). [ ] Briefly summarize key takeaways from the training. [ ] Training delivery method (e.g., online, instructor-led). (Online, Instructor-led, Hybrid) --- END OF TEMPLATE --- Transform this text into a digital, automated, and trackable mobile app! Visit: https://checklistguro.com/templates/mrp/mrp-system-security-checklist (Click "Install Template" to launch your digital inspection tool immediately)