The Information Security Strategy and General Principles outlines the information security strategy and the principles defined by Senior Management that are used to establish the Company Information Security Framework.
The objectives of the Information Security Framework are the following:
a. To support the business objectives of the Company by protecting its Information and Information Systems
b. To reduce the violation risk of Company’s Information confidentiality, integrity and availability, by defining principles for the correct use of Company Information and Information Systems
c. To instill the Information Security General Principles into Company’s personnel, defining at the same time every employee’s obligations, responsibilities and roles
d. To ensure that the Company meets all regulatory and contractual obligations
e. To protect the Company’s reputation, integrity, ethics and public image
f. To ensure the Company’s growth and reinforce customer trust for the Company’s products and services, creating in this way a competitive advantage
CONTENT
1. OVERVIEW
1.1 PROCEDURE OWNER
1.2 CLASSIFICATION
1.3 APPLICABLE REGULATIONS
1.4 RELATED [COMPANY] NORMS AND PROCEDURES
1.5 OBJECTIVES
1.6 AUDIENCE AND SCOPE
1.7 DOCUMENT SUPPORT
2. DEFINITIONS & ABBREVIATIONS
3. INFORMATION SECURITY GENERAL PRINCIPLES
3.1 FUNDAMENTAL PRINCIPLES
3.2 FUNCTIONAL PRINCIPLES
4. INFORMATION SECURITY FRAMEWORK STRUCTURE
5. EXCEPTIONS
6. FINAL CONSIDERATIONS
6.1 DISCIPLINARY ACTIONS AGAINST PROCEDURE VIOLATION
6.2 DOCUMENT REVISION
Pages: 13
This bundle contains all the products listed in the Data Governance section. Take advantage of the 25% OFF when buying the bundle! Users who purchased Information Security Strategy and General Principles, also purchased: ISMS Framework €49.00 Purchase Checkout Added to cart Physical and Environmental Security Policy €79.00 Purchase Checkout Added to cart
The objective of this policy is to reminds personnel of their responsibilities with respect to electronic communications, and specifically to social media.
The Email Usage Policy was developed by Company in order to allow the secure and effective use of the electronic mail (e-mail) service inside and outside Company. This policy set the standard for appropriate behavior of a Company employee when using the e-mail service and this applies to all employees.
Review Information Security Strategy and General Principles.
You must be logged in to post a review.