Five Security Policy Mistakes -- How to Fix Them
This was in Computer World recently about the five most common mistakes in security policies.
The mistakes are:
1) Not having a security policy
2) Not updating the security policy
3) Not tracking compliance with the security policy
4) Having a "tech only" policy
5) Having a policy that is large and unwieldy
The mistakes are:
1) Not having a security policy
2) Not updating the security policy
3) Not tracking compliance with the security policy
4) Having a "tech only" policy
5) Having a policy that is large and unwieldy
posted by The IT Security Guy at 10:40 PM
1 Comments:
I'm pretty sure that number 3 is the hardest to achieve. Making sure that people are following the policy AND getting the push from above to help you enforce the policy either through technical means (meaning spend money) or personal means (meaning getting HR involved) -- neither of which are easy to do.
Post a Comment
<< Home