| The most difficult part of creating a
| |
| | dates a document certifying that it has
|
| Security Policy for your business is
| |
| | been read, and then keep the signed and
|
| determining what, exactly, to include in
| |
| | dated certification in their respective
|
| it. Never heard of a Security Policy
| |
| | personnel folder. And every time that
|
| before? You're not alone. But whether
| |
| | your Security Policy is updated, make
|
| you are the only employee in your company
| |
| | every employee read it again, and sign
|
| or you have a small staff working for
| |
| | and date a document stating that they
|
| you, you need to learn what a Security
| |
| | have read the changes.The types of topics
|
| Policy is, and then you need to create
| |
| | you may want to cover in your company's
|
| one.In much the same way that a personnel
| |
| | Security Policy include but are not
|
| policy informs employees of things like
| |
| | limited to:* What can be loaded onto an
|
| vacation time accrual, performance review
| |
| | employee's computer from floppy disk or
|
| schedule and other personnel-related
| |
| | CD* What personal business, if any, can
|
| issues, a Security Policy informs your
| |
| | be conducted on the company computer*
|
| employees of the steps that are necessary
| |
| | Which files or company information is
|
| to keep your company's network and
| |
| | allowed to leave the internal network or
|
| computers secure. The policy is your
| |
| | is allowed to be sent out over the
|
| company's rules and regulations that are
| |
| | Internet* Who is allowed to install new
|
| enforceable, under law if necessary, if
| |
| | software and software upgrades onto the
|
| breached.A Security Policy will include
| |
| | system, and equally
|
| rules and formal procedures that are
| |
| | important, who is not allowed to do
|
| clearly written and laid out. But most
| |
| | this* A password management and password
|
| importantly, the information contained
| |
| | change policy which includes the
|
| must be easy for employees of all levels
| |
| | acceptable length of passwords. Provide
|
| to understand.And just as it is with
| |
| | examples of permissible/non-permissible
|
| young children, the content of your
| |
| | passwords. Examples of non-permissible
|
| Security Policy must be enforceable, and
| |
| | passwords might include date of birth,
|
| it must be enforced consistently. Saying
| |
| | names of pets, nicknames, children's
|
| in writing that something is not allowed,
| |
| | names, etc.* Who's allowed remote access
|
| then allowing it to happen during regular
| |
| | to your network from off-site* Policies
|
| work hours sends mixed messages to your
| |
| | for locking keyboard or using password
|
| employees. They won't know what really
| |
| | protected screensavers when an employee's
|
| is right or wrong, which will defeat the
| |
| | PC is left unattended* Who is allowed to
|
| whole point of your Security Policy.
| |
| | attach their laptop or other portable
|
| Inconsistent implementation also leaves
| |
| | computing device to the network and what
|
| you open to legal liability.Like any good
| |
| | information they are allowed to upload
|
| policy, your Security Policy should be
| |
| | download* Guidelines for vendors and
|
| regularly updated to reflect today's
| |
| | other visitors who may need access to
|
| rapidly-changing business environment.
| |
| | your network while they are
|
| Most of the time, you will be the person
| |
| | on-site.Whether you have one PC or
|
| making these changes. However, if your
| |
| | several networked together, you have a
|
| company is growing and adding staff, this
| |
| | lot of money invested. Protect this
|
| may not always be the case. Make sure the
| |
| | critical business asset with an iron-clad
|
| person responsible for updating your
| |
| | Security Policy.Copyright © 2004 Cavyl
|
| company's Security Policy has guidelines
| |
| | Stewart. For help with creating your
|
| and boundaries, and most of all, make
| |
| | security policy or to find security
|
| sure you read and approve any changes
| |
| | software or other small business
|
| made by someone else.Make presenting your
| |
| | programs, visit:
|
| Security Policy part of your new employee
| |
| | -
|
| orientation procedure. Make sure every
| |
| | Also, be sure to check out my Exclusive,
|
| employee reads the policy, signs and
| |
| | 100% free ecourses.
|
