Transcription of Establishing a Security Awareness Program - IT …
{{id}} {{{paragraph}}}
1-06-35 Establishing a Security Awareness ProgramMark DesmanPayoffOrganizations must regularly inform all users about information Security requirements andallocate resources to build and maintain a Security Awareness Program . This articlediscusses several ways to disseminate Security guidelines throughout the organization in acost-effective manner. Such issues as how to take advantage of existing resources and howto train new employees are discussed. Tips on how to measure the effectiveness of theprogram and enhance its impact are also AddressedProtection of information is not an IS issue but a corporate responsibility. Federal and stateregulators and legislatures are taking a greater interest in regulating the availability anddistribution of information and in securing information against deliberate misuse, theft, ordamage. Currently, no regulation addresses the information storage medium. Because theactions of corporate personnel can potentially be very damaging, personnel should beinformed of the constraints established by law and by standard Security practices andshould understand the reasons for their purpose of a Security Awareness Program is to explain to personnel the importanceof the information they handle and the legal and business reasons for maintaining itsconfidentiality.
1-06-35 Establishing a Security Awareness Program Mark Desman Payoff Organizations must regularly inform all users about information security requirements and
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}