Re: Practical Issues for Implementing Security Policies and Procedures

[Melissa Guenther <mguenther () COX NET>]

The BESAT lessons learned I had is don't wait for the P&P to be perfect
before implementing any type of awareness campaign.  It is perfectly fine -
and in some cases better - to roll out the campaign with whatever you have
and continue to finalize the P & P's as you go.
You can use the awareness campaign to help communicate newer or updated P&P
s, encouraging incident response reporting and so on.


 
 
-------Original Message-------
 
From: The EDUCAUSE Security Discussion Group Listserv
Date: 04/13/04 13:54:29
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Practical Issues for Implementing Security Policies and
Procedures
 
I'm looking for lessons learned concerning the implementation of
security policies and procedures (including group policies), including
communication and training for an upcoming teleconference for the
American Association of Medical Colleges (AAMC). If you have lessons
learned, battle scars or war stories you'd like to share please let me
know either via the list or in private. While our immediate focus is for
med schools, I imagine many lessons learned will be common to higher
education and/or healthcare in general. Thanks
 
Jere
 
**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.