Guide to Effective Remediation of Network Vulnerabilities and Policy Compliance ~ Sponsor
Consistent, ongoing execution of vulnerability management and policy compliance is difficult, if not impossible to do on a manual basis. There are simply too many "moving parts" to juggle and act on in a timely and cost-effective manner. 8 step vulnerability and compliance workflow: Create security policies and controls, track inventory and categorize assets, scan systems for vulnerabilities, compare vulnerabilities against inventory, classify and rank risks, pre-test patches, fixes and workarounds, apply patches, fixes and workarounds, and re-scan to confirm fixes and verify compliance.
Read the Article
|
Business Impact Analysis Guide
A very nice business impact analysis guide to help you create your own business impact analysis.
Read the Article
|
Information Security Policy - A Development Guide for Large and Small Companies
This paper examines the elements that need to be considered when developing and maintaining information security policy and goes on to present a design for a suite of information security policy documents and the accompanying development process.
Read the Article
|
Standards in desktop firewall policies
The idea of a common desktop firewall policy in any size organization is a very good thing. It makes responses to external or internal situations such as virus outbreaks or network-oriented propagation of viruses more predictable. In addition to providing a level of protection against port scanning, attacks or software vulnerabilities, it can provide the organizations local security team a baseline or starting point in dealing with such events. The purpose of this article is to discuss the need for a desktop firewall policy within an organization, determine how it should be formed, and provide an example of one along with the security benefits it provides an organization.
Read the Article
|
Developing a Security Policy
Security policy development is a frequently overlooked component of overall security architectures. This article details the importance of security policies and the basic steps involved in their creation.
Read the Article
|
Secure Server Policies and Procedures for Novell NetWare Compliance
This paper outlines these areas and provides generalized policy guidelines to be used when securing any server, regardless of the operating system. From these generalized policy guidelines, procedures specific to the Novell NetWare 6 operating system have been created and should be applied when securing a NetWare server running in a Windows environment.
Read the Article
|
How to Develop a Network Security Policy
This paper covers the needs, risks, and components of a network security policy.
Read the Article
|
10 Tips for Creating a Network Security Policy
A very short article that includes the ten steps that should be involved to create your own Network Security Policy.
Read the Article
|
Site Security Policy Development
This paper outlines some issues that the writer of a Site Computer Security Policy may need to consider when formulating such a document.
Read the Article
|
How to Design a Useful Incident Response Policy
Perhaps you're the Information Security Officer for your company. Or, maybe you're a technology auditor. Maybe you're in charge of data security for your university's computing department. Regardless of your title and circumstances, you've been working on implementing an information security program (you have been working on your program, right?) Such an endeavor has a tremendous scope, requiring great feats of perception and planning. This article aims to help you with an important facet of any information security program: the incident response policy.
Read the Article
|
