Preparing a Security Policy in Ten Basic Steps

Previous page
Table of content
Next page
 < Day Day Up > 

Following is a basic step-by-step checklist for creating a security policy:

Step 1.

Determine the general policy needed.

Step 2.

State the high-level purpose for the policy.

Step 3.

Perform risk assessment.

  1. Collect assets.

  2. Review threats.

  3. Generate costs.

Step 4.

Present the risk assessment and proposed policy purpose to departmental managers.

Step 5.

Determine the policy structure (one large or several small ones).

Step 6.

Prepare the policy outline.

  1. Purpose

  2. Scope

  3. Policy

  4. Enforcement

  5. Terms/glossary

Step 7.

Get the final signoff of the policy from all departmental managers.

Step 8.

Issue the policy to employees, and have them sign it if required.

Step 9.

Implement or activate the new policy.

Step 10.

Continually review the policy for flaws, and update it as required.

     < Day Day Up > 

    Previous page
    Table of content
    Next page
    Penetration Testing and Network Defense
    Penetration Testing and Network Defense
    ISBN: 1587052083
    EAN: 2147483647
    Year: 2005
    Pages: 209
    Authors: Andrew Whitaker, Daniel Newman
    BUY ON AMAZON
    High-Speed Signal Propagation[c] Advanced Black Magic
    Cisco IP Communications Express: CallManager Express with Cisco Unity Express
    Introduction to 80x86 Assembly Language and Computer Architecture
    Google Maps Hacks: Tips & Tools for Geographic Searching and Remixing
    Special Edition Using FileMaker 8
    Comparing, Designing, and Deploying VPNs
    flylib.com © 2008-2017.
    If you may any questions please contact us: flylib@qtcs.net
    Privacy policy