Sunday, May 20, 2012
Tuesday, 17 August 2010 20:12
User Rating: / 0
PoorBest 

Policy is the Foundation of IT Security

Information Security Policies provide a foundation for business information security. A good policy program will ensure the confidentiality, availability and integrity of business information:Policy creation for small businesses starts with three simple questions,  why, what and how.

Why

  • Compliance with Laws & Regulations
  • Ensure customer protection
  • Guard against information loss / theft
  • Ensure business continuity

 

What

  • Key Business information is identifiedPoints of interface with information are identified
  • Consumers of information are identified

 

How

  • Creation of a policy looks at key points of having a secure business, network and environment this will ensure that all aspects of the small business will be protected, to protect a company from legal issues, to create work standards or to implement fairness to work staff.
  • Consultation / Information Gathering
  • Policy Creation
  • Policy Review
  • Training & Implementation

The development of policies include four main steps. First is to review the policies, then gain approval from management and receive legal approval for an policies referring to legal situations.


Add this page to your favorite Social Bookmarking websites
Reddit! Del.icio.us! Mixx! Free and Open Source Software News Google! Live! Facebook! StumbleUpon! TwitThis Joomla Free PHP

Follow Us

Subscribe to CPA IT Security Blog - Powered by CPAPolicy.com

 Subscribe to CPA IT Security Blog - Powered by CPAPolicy.com 

Add to Google Reader or Homepage

Get Our Newsletter

CPA IT Security Newsletter

Receive HTML?

Call us