Home > Security Tips > Risk Management Strategies > Perfecting the security policy process
Security Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

RISK MANAGEMENT STRATEGIES

Perfecting the security policy process


Phebe Waterfield
10.28.2005
Rating: --- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


Phebe Waterfield, Security Analyst, Yankee Group, presented this session at Information Security Decisions Fall 2005.

MORE INFORMATION

Visit our resource center for more tips and expert advice on policies

View more presentations from some of the industry's foremost security practitioners

Learn more about Information Security Decisions

The best security policies are both comprehensive and easy to understand. But creating these sorts of policies is often easier said than done. In this presentation, learn how to draft, implement and enforce an effective security policy. Discover in-the-trenches tactics for perfecting the security policy process and find out:

  • Who should be involved in creating and updating policy
  • Examples and templates of concise security policies that work
  • Helpful hints to effectively communicate a policy to employees and enforce it
  • Best practices to design policies that don't have to change by accounting for organizational growth and technology changes
  • How to update policies and determine when it's necessary to do so

Download this presentation


Rate this Tip
To rate tips, you must be a member of SearchSecurity.com.
Register now to start rating these tips. Log in if you are already a member.




BROWSE BY TAG
Risk Management Strategies,   Information Security Management,   Information Security Policies, Procedures and Guidelines,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED CONTENT
Risk Management Strategies
How to justify information security spending on cloud computing
How to protect distributed information flows
Black box and white box testing: Which is best?
Breach prevention: How to keep track of data and applications
Information security management hype: Debunking best practices
Monitoring program data and internal controls for risk management
Cloud computing security: Choosing a VPN type to connect to the cloud
Cloud computing security: Routing and DNS security threats
Cloud computing security model overview: Network infrastructure issues
How to align an information security framework to your business model

Information Security Policies, Procedures and Guidelines
Health Net breach failure of security policy, technology
How to protect distributed information flows
Essential guide: Pandemic planning for H1N1
Whitelists, SaaS modify traditional security, tackle flaws
Melissa Hathaway urges more cooperation, government attention to cybersecurity
Reuters: Obama ready to select cyber security czar
How a corporate Twitter policy can combat social network threats
Should enterprises be concerned with Twitter in the workplace?
Information security management hype: Debunking best practices
Data breach avoidance begins with security basics, panel says

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
defense in depth  (SearchSecurity.com)
non-disclosure agreement  (SearchSecurity.com)
security policy  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Research Solutions for Network Security, Access Control and Security Threats
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts