Home > Security Tips > Compliance Counselor > Security policy by example
Security Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

COMPLIANCE COUNSELOR

Security policy by example


Ed Tittel
01.21.2003
Rating: -4.48- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


Although "monkey-see, monkey do" may sound like an overly primitive approach to formulating, building and maintaining information security policy documents, a majority of IT and security professionals report that they learn best by understanding not just the theories, concepts, practices and procedures that go into formulating security policies, but that they also benefit greatly from access to clear, well-written examples of the kinds of security policy documents they wish (or need) to create. To that end, I'd like to point out a number of free and for-a-fee resources that offer lots of examples, in the hopes that professionals in need of same will find these resources both usef



ul and informative:

With one of the for-a-fee resources in your kit (and public consensus is that Wood's Information Security Policies Made Easy is the best of the bunch) along with the reams of other free information and examples on the subject you can find on the Web, you too should be able to plan, formulate and manage security policy for your company or organization.

About the author

Ed Tittel is a principal at a content development company based in Austin, Texas, and the creator of the Exam Cram series. He's worked on numerous certification titles on Microsoft, Novell, CIW and Sun topics, and is working on several security certification books.



Rate this Tip
To rate tips, you must be a member of SearchSecurity.com.
Register now to start rating these tips. Log in if you are already a member.




BROWSE BY TAG
Security Management,   Compliance Counselor,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Security Management
Smart shopper's guide to correlation tools
What's your infosec IQ?
Countdown begins for Mydoom DDoS attacks
Hackers scanning for ports opened by Mydoom
National cybersecurity alert system launched
Dangerous, familiar application vulnerabilities top list
Potent Mydoom worm flooding inboxes
SSL VPNs stealing IPSec's thunder
Expert sheds light on Wi-Fi liability issues
Security insurance may be a smart policy for some

Compliance Counselor
The basics of enterprise GRC project management
PCI DSS: The structure of a standard
How to choose between source code reviews or Web application firewalls
HIPAA compliance: New regulations change the game
Data security best practices for PCI DSS compliance
Key elements of a HIPAA compliance checklist
A preview of PCI virtualization specifications
Strategies for email archiving and meeting compliance regulations
Information security forecast: Security management in 2009
End user Compliance: Creating a security awareness training program

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Research Solutions for Network Security, Access Control and Security Threats
More Security Resources for Resellers, VARs and OEMs
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy
  TechTarget - The IT Media ROI Experts