Home > Security Featured Topic
EMAIL THIS
 Featured Topic:  Policy management
Last Updated: Dec 16, 2002 
Managing security policies is no easy feat. We've compiled resources to help you every step of the way -- from development to implementation and enforcement.
>> Browse our complete collection of Security Policies Tips.
Employers must educate staff about security policies

(16 Dec 2002)

How well do enterprise employees understand IT security policies? Probably not very well, according to the Human Firewall Council, a consortium of security pros, analysts, academics and others who have developed benchmarks for policy awareness and management practices.

Read Full Story
NEWS:
>> Survey respondents see challenges with company security policies (SearchSecurity.com) 02 Dec 2002
>> University CSO provides education, security in nonprofit environment  (SearchSecurity.com) 18 Nov 2002
>> CSOs bring security to their market (SearchSecurity.com) 16 Dec 2002
>> Commentary: Security beyond software (CNET) 30 Mar 2001
>> Security Decisions: Nimble security policies a must (SearchSecurity) 20 Jun 2002
>> The state of IT security: Solid security policies help mitigate disasters (SearchSecurity.com) 09 Sep 2002
>> Audits determine soundness of security policies (ZDNet) 20 Aug 2002
>> Dos and don'ts: Policing user security policies  (SearchSecurity) 01 Aug 2002
>> Proper password policy is imperative (SearchSecurity) 08 Jul 2002
LINKS:
>> Best Web Links-->Security Management-->Security Policy & Infrastructure
>> Best Web Links-->Security Management-->Best Practices and Guidelines
>> Best Web Links-->Security Management-->Employee Security Education
ADVICE:
>> An overview of security policies
TIP :Here's an overview of security policies.
>> Planning considerations for an effective security policy
TIP :This tips lists what to ask when you're developing a security policy.
>> Infosec Know IT All Trivia: Policy management
TIP :Test your knowledge of security policy development and implementation with these Infosec Know IT All Trivia questions.
>> Setting up an information security policy
TIP :A security policy extends to more than just the technical infrastructure. Every employee has to have a hand in security.
>> Employees: Your best defense, or your greatest vulnerability
TIP :SearchSecurity advisor Neal O'Farrell addresses employee education in this edition of the Executive Security Briefing.
>> Survey: Corporate security policies
TIP :Here are the highlights from our Survey on Security Policies in the Workplace.
>> Implementing group security policy
TIP :This article underlines how implementing a group security policy can reduce technical support problems
>> Individual rights vs. corporate controls for PCs
TIP :SearchSecurity expert Paul Strassmann talks about why setting policies for individuals and corporations make sense
>> Set policies for public network access
TIP :This tip discusses some of the things you have to consider as workers access the Internet.
>> Creative user education
TIP :Educate your users with these creative tips provided by searchSecurity member Michelle Levine.
>> Creating an information security policy
TIP :This tip about security policies touches upon some of the legal issues associated with such policies.
>> Sample security policy for end users, part one
TIP :Here is the first part of a sample security policy for end users, which can be customized to fit your needs.
>> Issues to cover in a security policy
TIP :A short look at the ten areas of concern for an organization's security policy.
>> Security awareness training
TIP :Because your users are as important to security as your firewall.
>> Security -- The Common Criteria
TIP :Learn about two documents that can serve as guidelines when developing a security policy.
>> Developing a network security policy
TIP :
>> E-mail monitoring as a security policy issue
TIP :A look at the legal issues involved with implementing e-mail monitoring into your security policy.
>> Building your policy
TIP :New SearchSecurity.com writer Jeffrey Posluns provides his perspective on security policy.
>> The evolution of security policies
TIP :A look at how policies will need to adapt to meet the changes of the industry.
>> The elements of a formalized security infrastructure
TIP :The elements of a formalized security infrastructure.
>> Searching the Web for security policies
ASK THE EXPERTS :I'm doing a comparison of security policies for an undergraduate assignment, but my Internet searches yield mostly university ...
>> Participants in the policy development process
ASK THE EXPERTS :What groups are normally involved in the policy development process?

>> How to approach a wireless policy
ASK THE EXPERTS :What is a good approach in writing a wireless and handheld device usage policy?
>> Differentiating between policies, standards, procedures and technical controls
ASK THE EXPERTS :

What are the differences among policies, standards, procedures and technical controls?
>> Resources for writing a security policy
ASK THE EXPERTS :If you've never written a security policy before, where can you obtain information on compiling one? My concern is making ...
>> Disseminating policies
ASK THE EXPERTS :What is the best method to disseminate policies?

>> The scope of a security policy
ASK THE EXPERTS :I am looking into the BS 7799. With regards to security policies, I am a little confused. Does a security policy contain all ...
>> Security policies in legal proceedings
ASK THE EXPERTS :I am in the process of finalizing a security policy for my company. I have a question about use of the policy for legal ...
>> Patching policies
ASK THE EXPERTS :Do you have or know of any areas where I can locate a server patching policy? This is a requirement at my company.

BROWSE BY TAG
Human Resource Issues,   Security Management,   Employer/Employee Privacy Issues,   Security Policy & Infrastructure,   Best Practices and Guidelines,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Human Resource Issues
Fighting the hacker myth
Of hackers and Hannibal Lechter
Terminating a system administrator
Webcast: Exploring the pros and cons of employee monitoring
The pros and cons of employee monitoring

Employer/Employee Privacy Issues
The PATRIOT Act
The security policy document library: E-mail policy
Webcast: Exploring the pros and cons of employee monitoring
The pros and cons of employee monitoring
Enterprise privacy issues

Security Policy & Infrastructure
Tier-1 policies overview, part four: Procurement and Contracts, Records Management and Asset Classification Policies
Tier-1 policies overview, part three: Corporate Communications, Work Place Security and Business Continuity Plan Policies
Action-forcing mechanisms encourage policy compliance
Presentation: Essential strategies for policy development
Developing security policies
Best practices: E-mail security policies
Week 2: Passwords -- Updating, selecting and recording user and administrative passwords
What constitutes acceptable use?
Infosec Know IT All Trivia: Policy management
Terminating a system administrator

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

> Security Wire Weekly
> Information Security Decisions Fall 2005
> Battling spyware
> Worms prey on Plug and Play
> Web Security School
View full list of Featured Topics

This week's poll:
Do you know the ins and outs of your company's security policy?



 Yes: It's clearly spelled out and our security practices are strictly enforced. 
 Kind of: I know it's there, but it gets in the way of job performance. 
 No: I know our systems manager(s) will clean up any mess. 
 We have a security policy? 
Poll participation is restricted to registered members. Not a member? Register. Otherwise, log in:
username:
password:
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts