Solved

Security Policy

Posted on 2011-09-13
8
697 Views
Last Modified: 2012-05-12
is there any good material which can help to write an Organization's IT Related (ISO 27001) policies like Security Policy, Internet usage policy, media access policy etc.

1) is there any ready to go templates
2) have any body shared ISO 27001 related SAMPLE policies on internet.
0
Comment
Question by:osloboy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
8 Comments
 
LVL 7

Expert Comment

by:mrhamen
ID: 36532187
Here is a start for different types of policies

http://www.dmoz.org/Computers/Security/Policy/Sample_Policies/
0
 

Author Comment

by:osloboy
ID: 36535771
thanks, what about professional  stuff
0
 
LVL 7

Expert Comment

by:mrhamen
ID: 36536297
what do you mean by professional stuff?
0
Moving data to the cloud? Find out if you’re ready

Before moving to the cloud, it is important to carefully define your db needs, plan for the migration & understand prod. environment. This wp explains how to define what you need from a cloud provider, plan for the migration & what putting a cloud solution into practice entails.

 

Author Comment

by:osloboy
ID: 36537765
out of box, ready to go. like what you say about www.iso27001security.com
0
 
LVL 64

Accepted Solution

by:
btan earned 500 total points
ID: 36561257
As you clearly pointed out the link, you can find couple of template link for policy write up @ http://www.iso27001security.com/html/links.html

E.g The State of California Information Security Office released an Information Security Program Guide for State Agencies - in effect a guideline on implementing ISO/IEC 27002 for US government entities @ http://www.cio.ca.gov/OIS/Government/documents/pdf/Info_Sec_Program_Guide.pdf

You can find out more samples from their official site (look at "Information Security Policy Templates", "Acceptable Use") @ http://www.cio.ca.gov/OIS/Government/library/samples.asp

btw, it is very close to NIST SP800-53. If you are interested, below is a link that shared template on mapping both @ http://www.sas70checklists.com/isoiec-27001-nist-sp-800-53-control-mapping-templates

0
 

Author Closing Comment

by:osloboy
ID: 36579538
good
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Progress
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question