P7 Design and implement a security policy for an organisation.docx

This preview shows page 1 - 2 out of 4 pages.

P7 Design and implement a security policy for an organisation. [12] [13] What is security policy? The privacy policy is a document that outlines the rules, laws, and practices for accessing a computer network. This document specifies how the organization will manage, protect and distribute its sensitive information (both corporate and customer information) and set the framework for security in accordance with the organization's computer network orientation. The privacy policy must identify all company assets as well as all potential threats to those assets. It includes security goals, guidance for their achievement and overall security management strategy and implementation of policies on important security mechanisms. No matter what business you have and the size of your company, your business will benefit from having a security policy. This policy outlines corporate goals for safety. Thanks to the enforced security policy, you can avoid many security threats. The policy should outline basic rules, guidelines, and definitions that are standardized throughout the organization. For example 1, an "Acceptable Use" policy would cover the rules and regulations for appropriate use of the computing facilities (sans n.d). For example 2, When we access our account to an online shopping website, that site will have a privacy policy for the personal data for the user, the user will feel safe when using. This security policy involved and implemented in WG company. It consists of security objectives, guidelines for their achievements, and overall security management strategies and policy implementation on key security mechanisms. The security policy sets out the guidelines and procedures within the scope of assets required by that company employees to know and adhere to as a major way of achieving security goals. Security policy is the basis for planning, designing, implementing, and managing security. Below are the network and Information Security Policy. The purpose of this policy is to establish administrative instructions, procedural requirements, and technical guidance to ensure accurate protection of company information operated by computer networks. This policy applies to all who access WG company's computer network. Throughout this policy, the word "user" will be used to collectively refer to all such individuals. This policy also applies to all computer communication systems and data owned or administered by WG company or its partners.

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture