Why is it so important for companies to have policies when it comes to information security?
Why is it so important for companies to have policies when it comes to information security? How can a company develop some policies if they do not have any? Where can they go to gather information?
It is extremely important for companies to have policies related to information security because these policies serve many purposes. First it guides the concerned people who use the information that is contained on the company database. The policy define the role of different employees when it comes to using the information system. Secondly it helps the company in legal matters if there is some legal issue related to the information.
Developing a security policy involves:
- Knowing the organization
- Define the scope of the policy
- Know the target audience
- Make sure that the policy can easily be translated to procedures
- Be aware of internal and external threats
- Be realistic
- Avoid a controversy
Related Posts
Article Summary: RIPQ: Advanced Photo Caching on Flash for Facebook
Qatari Blockade case study
Infiltration of soil Lab
Explain the use of real and nominal discount rates in discounting cash flows. Which is used more often and why?
How do you feel doing business in the Middle East would differ from doing business elsewhere?- How are environmental concerns affecting architecture today?