The effective protection of corporate information within the computer environment requires the placement of security responsibilities, classifications, and standards through written directive. 1) I seek your feedback on what you consider to be the "essential elements" of a model enterprise-wide computer security policy; and 2) Do you know of sources where I may obtain enterprise-wide computer security policies from a stratification of business types for a comparitive study? (I would definately like to read other company's policies.) Please feel free to contact me directly (lcwoodieat_private) or via BUGTRAQ. Woody Data Security Union Pacific
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:33:49 PDT