Work Package - 5

INFORMATION SECURITY RISK MANAGEMENT DEVELOPMENT


  • T5.1: Training sessions: development of information security policies and communication with stakeholders
  • T5.2: Development of information security risk management across the universities
  • T5.3: Establishment of regular communication channels with key third party suppliers

        27 March 2026, IEEE IT 2026 Conference
        Common understanding of cooperation protocols in academia-business environment, Žabljak, Montenegro (PHOTOS)


  • D5.1. Report on organised training sessions- Module II
    ⏳ D5.2. Report on established ISMS framework- Identify



Established ISMS

Responsive Cybersecurity Policy Table
Institution Document Title Legal Number / Reference
UDG Cybersecurity Framework for UDG UDG-CSF-00/2026
Cybersecurity Policy UDG-CSP-01/2026
Risk Assessment Policy UDG-RAP-02/2026
IT Policy: Access Control Policy UDG-ACP-03/2026
IT Policy: Acceptable Use of Information Technology Resources Policy UDG-AUITRP-04/2026
IT Policy: Bring Your Own Device (BYOD) Policy UDG-BYOD-05/2026
UCG Master policy package – Regulatory minimum framework UCG-ISMS-XX
Information security policy UCG-ISMS-01
Risk management policy UCG-ISMS-02
Incident management policy UCG-ISMS-03
Identity and access management (IAM) policy UCG-ISMS-04
Personal data protection policy UCG-ISMS-05
Network and systems security policy UCG-ISMS-06
Business continuity (BCP) and disaster recovery policy (DRP) UCG-ISMS-07
Supplier / Supply chain security policy UCG-ISMS-08
Security awareness and training policy UCG-ISMS-09
Asset management policy UCG-ISMS-10
UNIM IT Policy: Cybersecurity Framework R-283-26
IT Policy: Cybersecurity Policy R-284-26
IT Policy: Risk Assessment Policy R-285-26
IT Policy: Access Control Policy R-281-26
IT Policy: Acceptable Use of Information Technology Resources Policy R-280-26
IT Policy: Bring Your Own Device (BYOD) Policy R-282-26
ADRIATIC Incident Management Policy N/A
Information Risk Management Policy N/A
Information Security Policy N/A
Information Security Policy for External Collaborators N/A
User Information Security Policy N/A

II.1. Asset Management for Montenegrin Higher Education Institutions

Online: MS TEAMS
16th, 17th and 19th December 2025

II.2. Asset Management for Montenegrin Higher Education Institutions

Online: MS TEAMS
20th-22nd January 2026

II.3. Improvement for Montenegrin Higher Education Institutions

Online: MS TEAMS
3rd and 4th February 2026

  • Agenda (day 1, day 2)
  • Event Report 🔒
  • Photos - (link)
  • Attendance list 🔒

II.4. Develop the organizational understanding to manage cybersecurity risk to systems, assets, data, and capabilities

Faculty of Electrical Engineering and Computer Science, Maribor, Slovenia
17th, 18th and 19th February 2026

Home

European Commission Erasmus+ Project
Project Ref. no: ERASMUS-EDU-2024-CBHE-STRAND-3 / ERASMUS2027/ ProjectID: 101179688
This project has been funded with support from the European Commission.