Policies and Process Check
Strong policies and processes are the foundation of a successful information security program
Establishing and maintaining well-defined, comprehensive information security policies that support business goals and objectives is essential to all security programs. To be effective, information security policies and directives need to be supported by manageable enforcement processes.
Foundstone Professional Services offers the Policy and Process Health Check to quickly determine which policies and procedures you currently have in place and the status of each one of them. We help your organization develop enterprise-wide information security programs that meet both organizational objectives and regulatory requirements by instituting appropriate risk management practices that deliver a favorable return on investment.
Foundstone reviews and assesses the status of the following polices and their associated procedures:
- Data access
- Application access
- Software
- Privacy
- Information ownership and data classification
- Business resumption planning
- Incident handling
- Remote access
- Systems design and development
- Risk analysis and assessment
- Training and awareness
- Backup and restore
- Change management
- Personnel security
- Environmental security
- Data handling, marking and retention
- Documentation and data classification
- Policy, standards, process creation, approval, and maintenance
Click here to view a full datasheet about this service. To learn more about Foundstone Information Security Programs, email consulting@foundstone.com.
