|
Security Policies & Procedures: Principles & Practices
Security Policies and Procedures: Principles and Practices was created to teach information security policies and procedures and provide students with hands-on practice developing a security policy.This book provides an introduction to security policy, coverage of information security regulation and framework, and policies specific to industry sectors,
including financial, healthcare and small business.
CONTENTS:
Preface
Part One: Introduction to Policy
1. Policy Defined
2. Policy Elements
Part Two: Information Security Policy Regulations and Framework
3. Information Security Policy Framework
4. Organizational Security Policies & Procedures
5. Asset Classification and Control Policies & Procedures
6. Personnel Security Policies & Procedures
7. Physical and Environmental Security Policies & Procedures
8. Communications and Operations Management Policies & Procedures
9. Access Control Policies & Procedures
10. Systems Development and Maintenance Policies & Procedures
11. Disaster Recovery and Business Continuity Policies & Procedures & Procedures
Part Three: Sector Specific Policy
12. Information Security Regulatory Compliance for the Financial Sector
13. Information Security Regulatory Compliance for Healthcare
14. Information Security Regulatory Compliance for Critical Infrastructure
15. Information Security Policies and Procedures for Small Businesses
Appendix A: Resources for Information Security Professionals
Appendix B: Employee Information Security Policy Affirmation Agreement
Glossary
References
Index
|
