Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Security Policy

Posted on 2011-09-13
8
Medium Priority
?
706 Views
Last Modified: 2012-05-12
is there any good material which can help to write an Organization's IT Related (ISO 27001) policies like Security Policy, Internet usage policy, media access policy etc.

1) is there any ready to go templates
2) have any body shared ISO 27001 related SAMPLE policies on internet.
0
Comment
Question by:osloboy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
8 Comments
 
LVL 7

Expert Comment

by:mrhamen
ID: 36532187
Here is a start for different types of policies

http://www.dmoz.org/Computers/Security/Policy/Sample_Policies/
0
 

Author Comment

by:osloboy
ID: 36535771
thanks, what about professional  stuff
0
 
LVL 7

Expert Comment

by:mrhamen
ID: 36536297
what do you mean by professional stuff?
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:osloboy
ID: 36537765
out of box, ready to go. like what you say about www.iso27001security.com
0
 
LVL 64

Accepted Solution

by:
btan earned 2000 total points
ID: 36561257
As you clearly pointed out the link, you can find couple of template link for policy write up @ http://www.iso27001security.com/html/links.html

E.g The State of California Information Security Office released an Information Security Program Guide for State Agencies - in effect a guideline on implementing ISO/IEC 27002 for US government entities @ http://www.cio.ca.gov/OIS/Government/documents/pdf/Info_Sec_Program_Guide.pdf

You can find out more samples from their official site (look at "Information Security Policy Templates", "Acceptable Use") @ http://www.cio.ca.gov/OIS/Government/library/samples.asp

btw, it is very close to NIST SP800-53. If you are interested, below is a link that shared template on mapping both @ http://www.sas70checklists.com/isoiec-27001-nist-sp-800-53-control-mapping-templates

0
 

Author Closing Comment

by:osloboy
ID: 36579538
good
0

Featured Post

Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introducing Priority Question, our latest feature.
If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Progress

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question