Answer:
IT security policy identifies the methods for all individuals and using the organization's assets and resources. The main objective of Its security is to integrate the system information used by the organization.
Mature security policies need the following procedures.
- Acceptable use policies
- Access control policy
- Change management policy
- Incident Response
- Information Security
- Remote Access
- Email Policy
- Business Continuity Plan
Explanation:
Internet use policy
Internet use policy provides the employee with rules about the proper use of company equipment, network, and internet. The system can be tailored to a specific organization. The employee has some responsibility, including e-mail. The employee is responsible that the internet is used efficiently.
External device use policy
An employee using an external device and related software for data access will use secure data management procedures. A strong password must protect all external devices.Employee discloses their passwords to anyone would harm them.
Employee Identity (ID) policy
Employee identity policy indicates that you are an employee in the company.ID cards are issued to the employee. It also provides proper access to the employee to a company.
Computer use policy
Computer use policy is a way to emphasize the employee that a computer is a tool and should be used in manner. Using this policy, the employee monitors the network by three exceptions.
