| Subcategories found in Policy: |
| » Companies | » HIPAA | » Sample Policies |
Refine your Search: |
| @ ISO 17799 | |
| |
|
| Web Sites |
Acceptable Use Policy Report
A report on Acceptable Usage Policy: what corporations expect of it, a case study, and a framework for creating your own policy.
http://members.iinet.net.au/~colinwee/mbt/acceptableuse/
|
AmiWall.org
Proxy based system to aid in implementing employee internet use policies.
http://www.amiwall.org/
|
Building Effective, Tailored Information Security Policy
20th NISSC Internet Technical Security Policy Panel
http://csrc.nist.gov/nissc/1997/panels/isptg/pescatore/html/
|
Canada's Export Controls
Unofficial / unverified article describing Canada's export controls on cryptographic software.
http://www.efc.ca/pages/doc/crypto-export.html
|
CobiT User Group
International user group and hub for CobiT, the emerging IT control and security methodology.
http://www.controlit.org
|
GASSP Home Page
Generally Accepted System Security Principles, developed by The International Information Security Foundation.
http://web.mit.edu/security/www/gassp1.html
|
Information Security Policies
Make and manage security policies. Run awareness programs with audits and e-learning to build a human firewall.
http://www.neupart.com
|
Institute for Security and Open Methodologies (ISECOM)
Non-profit, international research initiative dedicated to defining standards in security testing and business integrity testing.
http://www.isecom.org
|
IT Security Cookbook
An excellent guide to computer & network security with a strong focus on writing and implementing security policy. This is primarily for security managers and system administrators.
http://www.boran.com/security/
|
ITworld.com - Security's human side
IT World article - essentially a review of Pentasafe's VigilEnt security policy management product.
http://www.itworld.com/Man/3903/IWD010529securityshuman/
|
Make Your Web Site P3P Compliant
How to create and publish your company's platform for privacy performance policy, a W3C initiative, in 6 steps.
http://www.w3.org/P3P/details.html
|
OSSTMM: Open Source Security Testing Methodology Manual
A widely used, peer-reviewed, comprehensive methodology for performing security tests.
http://www.isecom.org/projects/osstmm.shtml
|
P3P Guiding Principles
Principles behind the W3C Platform for Privacy Preferences initiative.
http://www.w3.org/TR/NOTE-P3P10-principles
|
Return on Information Security Investment
Assess your company's Return on Information Security Investment
http://www.geocities.com/amz/
|
RFC2196 (Site Security Handbook)
a guide to developing computer security policies and procedures for sites that have systems on the Internet. Published 1997.
http://www.cse.ohio-state.edu/cgi-bin/rfc/rfc2196.html
|
SecureZone
Information portal with focus on policies, protocols and standards
http://www.securezone.com
|
SecurityDocs
A substantial collection of papers and articles on the development and implementation of security policies.
http://www.securitydocs.com/Security_Policies
|
The Information Security Forum
It has produced the standard to provide guidelines on all aspects of information security including IT, data, and computer controls.
http://www.isfsecuritystandard.com
|
U.S. Department of Health and Human Services
Security standards, transactions and code set standards, identifier standards, mailing lists, implementation guides, and administrative simplification.
http://aspe.hhs.gov/admnsimp/
|
Windows IT LIbrary
This paper offers wide ranging advice on the development and implementation of security policies.
http://www.windowsitlibrary.com/Content/121/07/1.html?Ad=1&
|
