[no subject]

[Dancho Danchev <dancho.danchev () frame4 com>]

Samuel,

You might consider the following paper useful as far as security policies and their implementation is concerned.

http://www.frame4.com/content/pubs/security-policy.pdf 

Best,
Dancho

> > -----Original Message-----
> > From: Samuel S. Kempf [mailto:samk () rjpromotions com] 
> > Sent: Monday, January 17, 2005 1:33 AM
> > To: security-basics () securityfocus com
> > Subject: Building a Company Computer Use/Security Policy
> >
> > I've recently taken over the position of I.T. Director for a 
> > mid-sized company that has no IT policy of any sort currently 
> > in place, aside from a vague mention in the no compete 
> > agreement about not giving proprietary data to other 
> > companies. One of my prime initiatives at the moment is to 
> > implement such a policy, something I've never been 
> > responsible for before. Can anyone point me to sites/articles 
> > on how to do this? Or, better yet, does anyone know of such a 
> > policy available online that I could use as a basis for my 
> > company? Any suggestions are most welcome.
> >
> > Samuel S. Kempf