I l @ ve RuBoard |
Most organizations have some basic security, even if they are only informal activities. The current status of the security procedures must be evaluated, not only for their effectiveness but also for their applicability to the areas that the risk analysis has determined to be important. It needs to be determined if they appropriately address the areas of security that are most important to the organization. Evaluation of the effectiveness of current processes requires analysis of the procedures and testing of the practices. Assess the policies and procedures by reading them. Determine if they cover all the necessary topics and give enough detail in response to the defining and handling of infractions. Compare them to the policies and procedures of other similar organizations. The inspection process covers a tremendous range of issues, and, like most projects, the more analysis that is done up front, the more successful the project will be. Good planning will reduce the impact of security on the efficient running of the system. |
I l @ ve RuBoard |