The cornerstones of effective information security programs are well-written policy statements. This is the wellspring of all other directives, standards, procedures, guidelines, and other supporting documents. As with any assessment process, it is important to ensure that policies establish the direction management wants to go with regard to security
When reviewing policies, Thomas R. Peltier in […]
Popularity: 64% [?]
Do you have any security-related policies and standards
If so, do you want us to review them
Do you want us to perform a review of the physical security of your servers and network infrastructure
How many Internet domains do you have
How many Internet hosts do you have
Do you want us to map your Internet presence Otherwise, can […]
Popularity: 66% [?]
Can your tool collect and aggregate 100 percent of all log data from all inscope log sources on the network?
Are your logs transported and stored securely to satisfy the CIA (Confidentiality, Integrity, Availability) of log data?
Are there packaged reports that suit the needs of your Sarbanes Oxley projects stakeholders such as IT, auditors, maybe even […]
Popularity: 76% [?]