General Security Policy

4699 words 19 pages
Show More
Sample Information Security Policy

I. POLICY

A. It is the policy of ORGANIZATION XYZ that information, as defined hereinafter, in all its forms--written, spoken, recorded electronically or printed--will be protected from accidental or intentional unauthorized modification, destruction or disclosure throughout its life cycle. This protection includes an appropriate level of security over the equipment and software used to process, store, and transmit that information.

B. All policies and procedures must be documented and made available to individuals responsible for their implementation and compliance. All activities identified by the policies and procedures must also be documented. All the documentation, which …show more content…

Specific responsibilities include:

1. Ensuring security policies, procedures, and standards are in place and adhered to by entity.

2. Providing basic security support for all systems and users.

3. Advising owners in the identification and classification of computer resources. See Section VI Information Classification.

4. Advising systems development and application owners in the implementation of security controls for information on systems, from the point of system design, through testing and production implementation.

5. Educating custodian and user management with comprehensive information about security controls affecting system users and application systems.

6. Providing on-going employee security education.

7. Performing security audits.

8. Reporting regularly to the ORGANIZATION XYZ Oversight Committee on entity’s status with regard to information security.

B. Information Owner: The owner of a collection of information is usually the manager responsible for the creation of that information or the primary user of that information. This role often corresponds with the management of an organizational unit. In this context, ownership does not signify proprietary interest, and ownership may be shared. The owner may delegate ownership

Related

  • Va Cyber Security Research Paper
    1280 words | 6 pages

    of Veterans Affairs Security Profile 1. Preface This security profile of the Department of Veterans Affairs (VA) is based on two documents of public record. The first is the published VA Handbook 6500 (VAH 6500) which defined policy and procedures for systems within the purview of the VA (Department of Veterans Affairs, 2007). The second document is the Federal Information Security Management Act Assessment for FY 20011 commissioned by the VA Office of Inspector General (OIG) and performed by….

    Show More
  • Tft2 Task 2
    1405 words | 6 pages

    Undocumented account was created/added to a new system. • Method or Vulnerability to gain privilege escalation outside of change control policy. This led me to propose three policies, each address some of these key issues from separate fronts. The three policies include a Remote Access Policy, Application Deployment, and a Routine Maintenance policy. The Remote Access policy aims to correct the issue that non-authorized users were able to access the EHR….

    Show More
  • Role of Security Department in an Organisation
    2090 words | 9 pages

    1, INTRODUCTION Security plays a major role in business. The value security Department brings to organizations is enormous as the department works hard to avert losses, shield property and human assets. As organisations are hiring new employees, most are now conducting background investigations, so they can make a more sound judgment on each employee that is hired. Employers must keep in mind that they may be sued for defamation of character if they provide other employers negative or falsified….

    Show More
  • Ch1 Comp Security
    2289 words | 10 pages

    1: Introduction to Information Security TRUE/FALSE 1. An indirect attack involves a hacker using a personal computer to break into a system. ANS: F PTS: 1 REF: 3 2. The value of information comes from the characteristics it possesses. ANS: T PTS: 1 REF: 6 3. By balancing information security and access, a completely secure information system can be created. ANS: F PTS: 1 REF: 8 4. The security blueprint is a detailed version of the security framework. ANS: T PTS: 1 REF:….

    Show More
  • Eng 221 Memo Evaluation
    1707 words | 7 pages

    ------------------------------------------------- In choosing for the week 2 individual assignment, a memo that was written by Harkins Theaters corporate office in the wake of the Colorado tragedy that occurred on July 20th, 2012. The memo was meant as a general communication to all Harkins Theaters in Arizona and also in Texas, California, Colorado, and Oklahoma. Headquartered in Scottsdale, it was a communication for employees and upper management to know and how to proceed with the opening weekend of Batman….

    Show More
  • Public Policy Influences Government Stakeholders: Government Stakeholders Influences Public Policy
    1221 words | 5 pages

    Public Policy Influences Government Stakeholders: Government Stakeholders Influences Public Policy James Dykes Williams University: ORG-807 January 22, 2014 Public Policy Influences Government Stakeholders: Government Stakeholders Influences Public Policy The American people expect that government and government-reliant organizations will protect their interests when there are imminent threats to the well-being of citizens and humanity. In the process of sustaining trust from….

    Show More
  • Hipaa Violation
    1559 words | 7 pages

    many hospitals took notice when the investigation into possible HIPAA security law violations began. In addition to agreeing to pay the United States Government one million dollars, the hospital and the General Hospital Corporation agreed to sign a Resolution Agreement with the United States Department of Health and Human Services (HHS). The agreement required that the hospital develop and implement a comprehensive set of policies and procedures to safeguard the privacy of its patients. In signing….

    Show More
  • Social Policy
    2186 words | 9 pages

    Unit 7 Social Policy LO1 Understand the significant historical and contemporary landmarks in social welfare provision 1.1 Outline significant historical and contemporary landmarks in social policy. Social policy is the study of social services and the welfare state. In general terms, it looks at the idea of social welfare, and its relationship to politics and society. More specifically, it also considers detailed issues in * policy and administration of social services, including….

    Show More
  • Internet Privacy Law: a Comparison Between the United States and the European Union
    9312 words | 38 pages

    3JC_Poindexter@ncsu.edu Internet Privacy Law: A Comparison between the United States and the European Union Abstract The increasing use of personal information in web-based applications has created privacy concerns worldwide. This has led to awareness among policy makers in several countries regarding the desirability of harmonizing privacy laws. The challenge with privacy legislation from an international perspective is that the Internet is virtually borderless but legislative approaches differ between countries….

    Show More
  • Department of Homeland Security
    1539 words | 7 pages

    The Establishment of the Department of Homeland Security as Established by the Homeland Security Act of 2002 An Analysis and Report Zachary Stackhouse Political Science 101: Introduction October 24, 2011 Introduction On September 11th, 2001, The United States of America and the rest of the world stared and watched as the first and then second tower of the World Trade Center in New York came under attack by terrorists. At 8:46 am, American Airlines Flight 11 crashed into the North Tower….

    Show More

Popular Essays