Dedicated security infrastructure allows information systems to be provided a greater level of security than can be achieved through configuration control alone by delivering enhanced security capabilities. Without dedicated infrastructure, the potential exists that security vulnerabilities, which cannot be mitigated by the capabilities inherent in information systems, will be exploited leading to compromise of information system security.
This Security Infrastructure Policy Template includes the following sections:
- Default policy statements that define what the enterprise must do.
- Default procedures that define how the enterprise must do it.
- Baseline recommendations to customize the template to individual enterprise requirements.
Use this template to build an efficient and effective enterprise Security Policy.
Included in this zip file are:
- Intro Doc.pdf
- Terms and Conditions.pdf