Protect Your Computer System with a Comprehensive Security Policy

The most difficult part of creating a Security Policy for your business is determining what, exactly, to include in it. Never heard of a Security Policy before? You're not alone. But whether you are the only employee in your company or you have a small staff working for you, you need to learn what a Security Policy is, and then you need to create one.

In much the same way that a personnel policy informs employees of things like vacation time accrual, performance review schedule and other personnel-related issues, a Security Policy informs your employees of the steps that are necessary to keep your company's network and computers secure. The policy is your company's rules and regulations that are enforceable, under law if necessary, if breached.

A Security Policy will include rules and formal procedures that are clearly written and laid out. But most importantly, the information contained must be easy for employees of all levels to understand.

And just as it is with young children, the content of your Security Policy must be enforceable, and it must be enforced consistently. Saying in writing that something is not allowed, then allowing it to happen during regular work hours sends mixed messages to your employees. They won't know what really is right or wrong, which will defeat the whole point of your Security Policy. Inconsistent implementation also leaves you open to legal liability.

Like any good policy, your Security Policy should be regularly updated to reflect today's rapidly-changing business environment. Most of the time, you will be the person making these changes. However, if your company is growing and adding staff, this may not always be the case. Make sure the person responsible for updating your company's Security Policy has guidelines and boundaries, and most of all, make sure you read and approve any changes made by someone else.

Make presenting your Security Policy part of your new employee orientation procedure. Make sure every employee reads the policy, signs and dates a document certifying that it has been read, and then keep the signed and dated certification in their respective personnel folder. And every time that your Security Policy is updated, make every employee read it again, and sign and date a document stating that they have read the changes.

The types of topics you may want to cover in your company's Security Policy include but are not limited to:

* What can be loaded onto an employee's computer from floppy disk or CD

* What personal business, if any, can be conducted on the company computer

* Which files or company information is allowed to leave the internal network or is allowed to be sent out over the Internet

* Who is allowed to install new software and software upgrades onto the system, and equally important, who is not allowed to do this

* A password management and password change policy which includes the acceptable length of passwords. Provide examples of permissible/non-permissible passwords. Examples of non-permissible passwords might include date of birth, names of pets, nicknames, children's names, etc.

* Who's allowed remote access to your network from off-site

* Policies for locking keyboard or using password protected screensavers when an employee's PC is left unattended

* Who is allowed to attach their laptop or other portable computing device to the network and what information they are allowed to upload/download

* Guidelines for vendors and other visitors who may need access to your network while they are on-site.

Whether you have one PC or several networked together, you have a lot of money invested. Protect this critical business asset with an iron-clad Security Policy.

Copyright © 2004 Cavyl Stewart. For help with creating your security policy or to find security software or other small business programs, visit: http://www.find-small-business-s oftware.com/hr-software.html - Also, be sure to check out my Exclusive, 100% free ecourses.

In The News:

pen paper and inkwell


cat break through


Employee Surveys: a Strategic Tool for Positive Change

Do you want to measure your workers' level of satisfaction?... Read More

Quick Tip - Effective Meetings Begin With Goals

Goals are critically important for the success of a meeting.... Read More

Motivating For Higher Performance

Employee motivation is probably the most important single manageable factor... Read More

Ten Steps to Take the Work out of Work ? Replicate Yourself!

They say that management can be a lonely place. A... Read More

Planning For Growth

Are you planning your business or are you... Read More

Focus On the Prize

People talk to me about making personal and professional changes... Read More

Are You Managing to Lead?

For many people, the terms "manager" and "leader" are synonymous.... Read More

Management Procedures Usability ? How to Improve

Are your people consistently following your procedures? Each year, organizations... Read More

Overcoming Resistance

Virtually any type of organizational change involves role transitions of... Read More

Know Your Client - The First Rule of Business Coaching

Whilst the very best coaches have undertaken independently accredited training... Read More

Success: A Wholistic Perspective

The world has always been mixed with the... Read More

Leading Bad Actors To Be Good Performers

A successful leader told me, "The biggest challenge I've had... Read More

Make Change Easy - Get Involved!

There are wild variances in how much involvement organisations are... Read More

What to Ask When You?re Invited to a Meeting

1) Where is the agenda? A meeting without an agenda... Read More

Keys to Feeling Powerfull In An Uncertain World

Life has always been full of uncertainties. Over the last... Read More

Its a Training Issue!

There's a common phrase used by Organizational Development and Human... Read More

Behavioral Interview Questions You Can Use Monday Morning

If past behavior is the best way to determine future... Read More

Preventative Maintenance of Company Delivery Vehicles

If you have company delivery vehicles at your small or... Read More

Can A Business Still Be Profitable When People Skills Are Absent?

In our current world of rapid and amazing technological advances,... Read More

Innovation Management ? The Need For Knowledge Managers

Creativity can be defined as problem identification and idea generation... Read More

Project Heroes

Project heroes. We've all heard of them. Some of us... Read More

Across The Interview Table!

Job interviews are easier for the interviewer or the interviewee... Read More

Five Ways to Influence Change in Others

Because of my work as a consultant, trainer and coach... Read More

Increasing Employee Retention Through Employee Engagement

You've seen it happen many times. An organization that provides... Read More

Computer Consulting Profit Secrets

Do you own or manage a computer consulting company? Are... Read More

Business is About Making Money

Ask most people why they are in business and they... Read More

Create Your Methodology Based on a Standard Framework - Part One

OK. So you have decided that your organization has to... Read More

Sarbanes-Oxley and Section 404: Old Dog, New Teeth

The failures we have seen in the quality and integrity... Read More

Never Punish Yourself or Others for Failures

If you want to find success in various ramifications, be... Read More

The Survey Feedback Process for Organizational Development and Change

THE PURPOSE OF SURVEY FEEDBACK:In globally competitive environments, organizations are... Read More

Are You Using the Right Form of Energy?

As we near the end of summer, here is a... Read More

Are You in Control of Your Practice or Does it Control You?

One of the most common complaints that business owners have... Read More

Einstein - Definition of Insanity

Insanity in the Sign & Graphics IndustryEinstein's DefinitionAlbert Einstein once... Read More