NEXT maintains a comprehensive set of organizational security policies that must be agreed to by all employees annually.
All policies are reviewed and approved by management annually. Employees who violate any policies may face disciplinary consequences in proportion to their violation.
Policies are maintained on the following topics:
Acceptable Use Policy
Anti-Corruption & Anti-Bribery Policy
Asset Management Policy
Backup Policy
Business Continuity Plan
Code of Conduct
Data Classification Policy
Data Deletion Policy
Data Protection Policy
Disaster Recovery Plan
Encrupttion Policy
Incident Response Plan
Information Security Policy
Password Policy
Physical Security Policy
Responsible Disclosure Policy
Risk Assessment Program
Software Development Life Cycle Policy
System Access Control Policy
Vendor Management Policy
Vulnerability Management Policy
A copy of these policies can be made available to NEXT Enterprise customers on request.