Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • Types of Security Policies in Information Technology

    Încărcat de

    http://www.HelpWithassignment.com/
    42 vizualizări14 pagini
    The Policies for Information Security must come from all corners of an organization which includes the general staff. These Security Policies are the basis for all information security planning, design and deployment.

    Drepturi de autor

    © Attribution Non-Commercial (BY-NC)

    Formate disponibile

    PPTX, PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    The Policies for Information Security must come from all corners of an organization which includes the general staff. These Security Policies are the basis for all information security planning, design and deployment.

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PPTX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    42 vizualizări14 pagini

    Types of Security Policies in Information Technology

    Încărcat de

    http://www.HelpWithassignment.com/
    The Policies for Information Security must come from all corners of an organization which includes the general staff. These Security Policies are the basis for all information security planning, design and deployment.

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PPTX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 14

    www.HelpWithAssignment.

    com

    The Policies for Information Security must come from all corners of an organization which includes the general staff. These Security Policies are the basis for all information security planning, design and deployment.

    www.HelpWithAssignment.com

    Such Security Policies should be able to provide a direction on how the issues should be handled and what are the best technologies to be used. These policies will direct how a particular software or equipment should work. This specific information is placed in the standards, procedures and practices.

    www.HelpWithAssignment.com

    The starting and the ending point of any qualitative security programs is the policy that has been taken. These security policies are very easy to decide on but they are very difficult to implement in a proper manner.

    www.HelpWithAssignment.com

    Security Policies mostly depend upon the context in which they are used. These security policies of an organization are required to protect the information assets of an organization. Managements often propose three types of security policies. These are:

    www.HelpWithAssignment.com

    In Enterprise Information Security Policy, a direct support is given to the organizations mission, vision and direction. This security policy will view and direct all the security efforts.

    www.HelpWithAssignment.com

    The EISP on the other hand also provides a direction in the development, implementation and management of the security program. It also sets out the requirements that must be met by the information security framework.

    www.HelpWithAssignment.com

    In Issue-specific Security Policy, the scope and applicability of the security policy is examined. The technologies that need to be used are addressed.

    www.HelpWithAssignment.com

    Authorization of user access, privacy protection, fair and responsible use of the technology is addressed. Often, the users are prohibited from using the information in a manner that can harm others.

    www.HelpWithAssignment.com

    System-specific Security Policies often include standards and procedures to be implemented while maintaining of systems. This security policy is also used to address the implementation and configuration of technology as well as the behavior of the people.

    www.HelpWithAssignment.com

    After the organization develops the information security policies and standards, the information security department will develop the blueprint for the information security program.

    www.HelpWithAssignment.com

    The Information Security Department will list all the information assets and prioritizes the threats and dangers of the organization, a risk assessment analysis is conducted. These assessments will help in the design of the security blueprint for the organization.

    www.HelpWithAssignment.com

    This security blueprint will act as the basis for the design, selection and implementation of all Security Program Elements. Such Security Program Elements include policy implementation, ongoing policy management, risk management programs, education and training programs technological controls and maintenance of the security programs.

    www.HelpWithAssignment.com

    For further details on IT Security, visit our websites at http://www.helpwithassignment.com/IT_Securi ty_Assignment_Help and http://www.helpwiththesis.com

    www.HelpWithAssignment.com

    S-ar putea să vă placă și