FREE Trial

1. Security education and advisory 2. Risk Management Threats to IT Assets (physical threats and security)...

Fantastic news! We've Found the answer you've been seeking!

Question:

Transcribed Image Text:

1. Security education and advisory 2. Risk Management Threats to IT Assets (physical threats and security) 3. Encryption of data/email 4. Standards and compliance 5. Security testing and implementation 6. Others: a. Password security and configuration b. Physical security to the building and the server room c. Acceptable use policy for employee signature These are to be in chapter format: 1) Security education a. When should an employee be educated on security of data, physical, etc. i. When an employee is hired ii. When they open a phishing/spam email iii. When they get a virus on their computer 2) Physical security for the building a. What type of security (badge, key, security guard, etc.) b. Hours they are allowed in the building 3) Physical security to the server room a. What type of security b. Who will have access 4) Encryption of data/email a. What type of data needs to be encrypted b. How will it be encrypted 5) Security testing and implementation a. Who will do the testing b. Who will the testing be done C. What acceptable outcomes will there be 6) Password security a. How long is the minimum password b. What type of password is required i. Strong ii. Weak c. When will the passwords expire d. How many will be remembered before reusing a previous password 7) Acceptable use policy a. Who is to sign b. Who will keep the signed copies 8) Any other policies you feel are needed 1. Security education and advisory 2. Risk Management Threats to IT Assets (physical threats and security) 3. Encryption of data/email 4. Standards and compliance 5. Security testing and implementation 6. Others: a. Password security and configuration b. Physical security to the building and the server room c. Acceptable use policy for employee signature These are to be in chapter format: 1) Security education a. When should an employee be educated on security of data, physical, etc. i. When an employee is hired ii. When they open a phishing/spam email iii. When they get a virus on their computer 2) Physical security for the building a. What type of security (badge, key, security guard, etc.) b. Hours they are allowed in the building 3) Physical security to the server room a. What type of security b. Who will have access 4) Encryption of data/email a. What type of data needs to be encrypted b. How will it be encrypted 5) Security testing and implementation a. Who will do the testing b. Who will the testing be done C. What acceptable outcomes will there be 6) Password security a. How long is the minimum password b. What type of password is required i. Strong ii. Weak c. When will the passwords expire d. How many will be remembered before reusing a previous password 7) Acceptable use policy a. Who is to sign b. Who will keep the signed copies 8) Any other policies you feel are needed

Expert Answer:

Answer rating: 100% (QA)

1 Security Education Security education involves teaching employees about the importance of protecting sensitive data physical information and their own safety It should include topics such as underst... View the full answer


answer-question-section
Related Book For  answer-question
Income Tax Fundamentals 2013

Income Tax Fundamentals 2013

ISBN: 9781285586618

31st Edition

Authors: Gerald E. Whittenburg, Martha Altus Buller, Steven L Gill

See More Books
Posted Date:
See More Questions

Students also viewed these general management questions

The European Fundamental Freedoms A Contextual Approach 1st Edition - ISBN: 0198727720 - Free Book