Aelita Enterprise Directory Manager
Secure "Rules and Roles" management platform that facilitates secure Exchange and Active Directory administration.
An Overview of Corporate Computer User Policy
Article discusses the elements of a corporate security policy, which it calls the gateway to a company`s intellectual property. The main threat to information security within a com…
Building Effective, Tailored Information Security Policy
20th NISSC Internet Technical Security Policy Panel
CobiT User Group
International user group and hub for CobiT, the emerging IT control and security methodology.
Developing an Information Security Strategy
This whitepaper describes the steps needed to develop an organization-wide information security strategy.
GASSP Home Page
Generally Accepted System Security Principles, developed by The International Information Security Foundation.
Information Security Policies
Make and manage security policies. Run awareness programs with audits and e-learning to build a human firewall.
Institute for Security and Open Methodologies (ISECOM)
Non-profit, international research initiative dedicated to defining standards in security testing and business integrity testing.
IT Security Cookbook
An excellent guide to computer & network security with a strong focus on writing and implementing security policy. This is primarily for security managers and system administrator…
ITworld.com - Security's human side
IT World article - essentially a review of Pentasafe's VigilEnt security policy management product.
Make Your Web Site P3P Compliant
How to create and publish your company's platform for privacy performance policy, a W3C initiative, in 6 steps.
PKI Policy Whitepaper
Provides general information about PKI policy, the role that policy plays in a PKI and how that policy applies to both traditional and PKI-enabled business environments.
Return on Information Security Investment
Assess your company's Return on Information Security Investment
SANS InfoSec Reading Room
Articles on security policy and other information security topics.
Structured Approach to Computer Security
A security policy is a set of rules written in general terms stating what is permitted and what is not permitted in a system during normal operation.
Understanding the Virus Threat and Developing Effective Anti-Virus Policy
This paper focuses on providing the reader with an overview of the current virus landscape and aids in developing best practice anti-virus policies.
Windows 2000 Group Policy and Security
The use of Group Policy to simplify the network security tasks that you face as a network administrator. With Group Policy, you can ensure that the machines on your network remain …