In an effort to help busy security managers, CISSP Shelley Bard's weekly column builds upon the concept of the perpetual calendar, offering a schedule of reminders for a proactive, strategic security plan. Here are the objectives Shelley prescribes for weeks 5 through 8.
Week 5: Licensing and seat management
Objective: At least annually, update your licensing and seat management processes.
Week 6: Your information security education, training and awareness program
Objective: Provide security awareness training for end users on a quarterly basis.
Week 7: Training yourself and your IT staff
Objective: Take advantage of training opportunities two or three times a year.
Week 8: Reviewing your policies and procedures
Objective: Review your policies and procedures a minimum of once a year and more often if you find them out of date during the year.