A.4 Chapter 3: Policies and Guidelines

Previous page
Table of content
Next page

  • Assess your environment. What do you need to protect? What are you protecting against?

  • Understand priorities, budget, and available resources .

  • Perform a risk assessment and cost-benefit analysis.

  • Get management involved.

  • Set priorities for security.

  • Identify your security perimeter.

  • Develop a positive security policy. Circulate it to all users.

  • Ensure that authority is matched with responsibility.

  • Ensure that everything to be protected has an "owner."

  • Work to educate your users on good security practice.

  • Don't have different, less secure rules for top-level management.

  • Conduct a compliance audit.

  • Outsource when appropriate, but with great care.


Previous page
Table of content
Next page
Practical UNIX and Internet Security
Practical Unix & Internet Security, 3rd Edition
ISBN: 0596003234
EAN: 2147483647
Year: 2003
Pages: 265
Authors: Simson Garfinkel, Gene Spafford PH.D., Alan Schwartz PH.D.
BUY ON AMAZON
ERP and Data Warehousing in Organizations: Issues and Challenges
The .NET Developers Guide to Directory Services Programming
The Java Tutorial: A Short Course on the Basics, 4th Edition
Practical Intrusion Analysis: Prevention and Detection for the Twenty-First Century: Prevention and Detection for the Twenty-First Century
File System Forensic Analysis
AutoCAD 2005 and AutoCAD LT 2005. No Experience Required
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy