• Advertise
• Search
• Members
• Free Magazines
• Newest Links
• Categories
• Register
• Login

The Many Facets of an Information Security Program

Added by Papergrl

Description: This document is a review of the various programs and processes that should be in place within any organization for the protection of their information assets. The many areas of any organization's security program play key roles in supporting the certification and accreditation (C&A) process of an organization's information assets. The supporting areas along with the C&A and post C&A activities make up an organization's information security program. Five primary sections herein outline an information security program baseline. The first section is a high-level overview of an information security program. The second section identifies the laws and regulations that require an information security program. The third section identifies supporting security standards and best practices. The fourth section gives an overview of the accreditation's supporting programs. The last section address the C&A methodology, an outline of the methodologies output and the post accreditation activities.