Are there any sites that provide free security policies, procedures, checklists, etc. for security management. If so, could you please direct me to them?

    Requires Free Membership to View

For security policies, a good place to start is the SANS™ Institute (http://www.sans.org/resources/policies/), where you can find many examples, templates, and a policy primer.

Often, it is useful to see how other organizations execute their policies. The following sites show you how the National Institute of Heath (http://cio.berkeley.edu/policies.html) and Berkeley University (http://irm.cit.nih.gov/security/sec_policy.html) created their policies.

The following links provide an extensive bouquet of information and examples pertaining to policies:

  • http://secinf.net/ipolicye.html
  • http://www.information-security-policies-and-standards.com

The following site will point you to a relatively inexpensive tool for policy creation http://www.network-and-it-security-policies.com.

NIST develops a majority of the standards embodied in the industry. At the following Web site, you can find a wealth of information on checklists, guidelines and procedures from topics ranging from incident response, wireless security, HIPPA, Voice over IP and much more. This should be a familiar Web site to anyone in the security field http://csrc.nist.gov/publications/nistpubs.

For security checklists there are a number of sites to visit, depending upon what you need to evaluate.

  • http://www.sans.org/score/
  • http://www.cert.org/tech_tips/
  • http://csrc.nist.gov/pcig/cig.html
  • http://www.microsoft.com/technet/archive/security/chklist/default.mspx

More Information
  • Learn how security policies differ from guidelines and standards.
  • Visit our creating and managing policy resource center for news, tips and expert advice.

  • This was first published in September 2005

    There are Comments. Add yours.

     
    TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

    REGISTER or login:

    Forgot Password?
    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
    Sort by: OldestNewest

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to: