A security policy is the foundation of a company’s strategy. How do employees know the information security strategy if it is not document, published, and communicated. Any company doing business needs a security policy. We can assist with the development of security policies to address technologies, evolving threats, and new government and industry standards. We address a minimum of the following:

  1. Basic Purpose of the Policy
  2. Review any Existing Policies
  3. Assist With establishing a Team for review and Development
  4. Method of Communication to Employees
  5. Policy Review Cycles and Maintenance
  6. Areas Requiring Compliance with Legislative
  7. Audience- who will use the policy
  8. Policy Content
  9. Top Down Approach in Developing the Policy
  10. Risk Assessment and Threats to be Addressed in the Policy