Untangling All Of
Your Network Problems
Home Solutions Cyber Crime Lab Testing Contracts Information Employment Contact



o Back

o Briefings
o Secure Networks
o E-commerce
o Security & Privacy
* Assessments
* Design
- Enterprise
- Internet
- Policy
- Process
- Secure
- Standards
* Implementation
* Management
o Testing

Policy

Security Policy Definition

Although information assets are specific to your business functions and business strategies, they may be contained within broad categories such as those that need contractual and legislative compliance, those needing virus prevention, those critical to business recovery following security compromises, etc. SSG's Security Policy Definition offering investigates the requirements for information security, the associated priorities, and thereafter, create a custom security policy to clearly demonstrate management's commitment to an enterprise security program.

SSG security consultants will team with your staff to develop a detailed work plan and on a continuing basis to ensure that all work performed is designed to satisfy your organization's needs. To ensure the policy developed during this activity meet your business needs and can be realistically implemented, SSG refers to its own internal corporate security program elements (e.g. corporate instructions and standards) together with "best practices" selected from industry standards for commercial environments in the areas such as:

  • organization
  • personnel
  • physical controls
  • asset classification and control
  • network and computer management
  • business continuity
  • application development
  • and compliance.

Based on information gathered from interviews with your key business and IT managers, SSG consultants will develop a corporate security policy that will contain, at a minimum:

  • definition of information security with a clear statement of management's intentions
  • explanation of specific security requirements including:
    • compliance with legislative and contractual requirements
    • security education, virus prevention and detection, and business continuity planning
    • a definition of general and specific roles and responsibilities for the various aspects of your information security program
    • an explanation of the requirement and process for reporting suspected security incidents, andthe process, including roles and responsibilities, for maintaining the policy document.

Range of Services

  • review of your organization's business strategy and related security requirements
  • review of your organization's IT strategy, current security concerns, and future security requirements
  • review and analysis of your organization's current security policy and standards against the needs of your organization's business and IT strategies
  • customized security policy document which will prescribe management's direction to guide your organization in meeting your corporation's security objectives according to its business needs

Battle Lab
Coming soon, the Battle Lab! A virtual play-ground for your applications and security tools. Scenarios running daily!

Wireless
With everybody trending to wireless technologies, make sure your information is secure.

Contact Us
We always welcome comments and questions. Contact us via e-mail or by phone at (505)-798-0129.

Copyright System Solutions Group, 2003.
All rights reserved. Disclaimer