Policies and Processes
Subcategories
Sort
Information Security Policy - A Development Guide for Large and Small Companies
A security policy should fulfil many purposes. It should: protect people and information; set the rules for expected behaviour by users, system administrators, management, and security personnel; authorize security personnel to monitor, probe, and in...
A Preparation Guide to Information Security Policies
This paper introduces security policies, as an informational paper pertaining to what one should know prior to writing a security policy. I would have greatly benefited from this information prior to creating my first security policy. Proper preparat...
A Short Primer for Developing Security Policies
This short primer of developing security policies is taken from Michele D. Guel's<br />full day tutorial title "Proven Practices for Managing the Security Function."
Acceptable Encryption Policy
The purpose of this policy is to provide guidance that limits the use of encryption to those algorithms that have received substantial public review and have been proven to work effectively. Additionally, this policy provides direction to ensure that...
Acceptable Security on Public Access Computer Workstations in Public University Libraries
Providing highly secure workstations in public university libraries requires defining what is acceptable for the working environment and determining what types of security can be implemented to compensate for lesser security at lower layers at the wo...
Acquisition Assessment Policy
Defines responsibilities regarding corporate acquisitions, and defines the minimum requirements of an acquisition assessment to be completed by the information security group.
Administrative Computing Security Policy
This policy outlines the responsibilities of users, data stewards, application stewards, systems administrators and management to assure the availability, integrity and confidentiality of a University.
Adventures in implementing a strong password policy
Password authentication is high in the list of potential security vulnerabilities. This paper explores the issues we had to negotiate in strengthening our passwords, some of the of the special situations which had to be handled as exceptions to the p...
An Overview of Corporate Computer User Policy
A security policy should serve as the company's constitution that governs how employees use the network and take care of both internal and external security issues. It should be well planned and periodically updated in order to reflect your compa...
Analog/ISDN Line Policy
Defines standards for use of analog/ISDN lines for Fax sending and receiving, and for connection to computers.
Add this list to your website
Copy and paste this javascript into your webpage to show a dynamic list of papers in this category. More information
here
Page: 1 2 3 4 5
