With both the types of threats and the attack surface expanding every year, systems security continues to grow more complex. Addressing it comprehensively and collaboratively goes far beyond the individual organizational level and requires a wide variety of experts from information technology, criminal justice, national security and defense, psychology, political science, and more.
At the organizational level, however, leaders can begin to take charge of their own protection. This paper covers four key areas that should be addressed in any information security policy:
- Password Policies
- Network Management
- Data Security
- Social Engineering
By following the recommendations for each of these areas, you will lay the groundwork for policies that protect your systems, your data and your organization’s future.