security policy
Home > Security Definitions - Security policy
SearchSecurity.com Definitions (Powered by WhatIs.com)
EMAIL THIS
LOOK UP TECH TERMS Powered by: WhatIs.com
Search listings for thousands of IT terms:
Browse tech terms alphabetically:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

security policy


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

DEFINITION - In business, a security policy is a document that states in writing how a company plans to protect the company's physical and information technology (IT) assets. A security policy is often considered to be a "living document", meaning that the document is never finished, but is continuously updated as technology and employee requirements change. A company's security policy may include an acceptable use policy, a description of how the company plans to educate its employees about protecting the company's assets, an explanation of how security measurements will be carried out and enforced, and a procedure for evaluating the effectiveness of the security policy to ensure that necessary corrections will be made.

LAST UPDATED: 29 May 2007

Read more about security policy:
- SearchSecurity.com has collected articles, white papers, and case studies about security policies.
- This white paper from Security Focus explains why security policies often fail.
- Sans.org answers the question "What do I put in a security policy"?


Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Security and audit relationships: Uneasy antagonists or partners in arms?
The relationship between information security pros and auditors can be a rocky one, but there are a few specific steps that can make it smoother.
Deleting user accounts: How to manage users during a layoff
When budgets get cut across the enterprise, employees will probably get cut, too. So what's the best way to handle a large number of user account...
Security beyond compliance: A proactive and customized security framework
Though compliance guidelines are a good place to start, they in no way guarantee the security of a network. Marcos Christodonte II explains how to...

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
defense in depth  (SearchSecurity.com)
Defense in depth is the coordinated use of multiple security countermeasures to protect the integrity of the information assets in an enterprise......
non-disclosure agreement  (SearchSecurity.com)




Get More security policy Answers
Find Targeted security policy Answers for Channel Professionals
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts