Unformatted text preview: are further expected to work with the InfoSec Risk Assessment Team in the development of a remediation plan. 4.0 Risk Assessment Process For additional information, go to the Risk Assessment Process. 5.0 Enforcement Any employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment. 6.0 Definitions Terms Definitions Entity Any business unit, department, group, or third party, internal or external to <Company Name>, responsible for maintaining <Company Name> assets. Risk Those factors that could affect confidentiality, availability, and integrity of <Company Name>'s key information assets and systems. InfoSec is responsible for ensuring the integrity, confidentiality, and availability of critical information and computing assets, while minimizing the impact of security procedures and policies upon business productivity. 7.0 Revision History...
View Full Document
- Two '08
- Th ird Party, en tity th, th ese systems, th ird par