Corporate businesses have an obligation to protect the privacy of all employees and ensure their personal security on the job. Publicly traded companies can also benefit from putting policies in place ...

If you needed a reason to institute an information security policy, consider this statistic from a Ponemon Institute study from late 2014: 43 percent of businesses dealt with a data breach at some ...

Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...

The objective of Brandeis University (“University”) in the development and implementation of this comprehensive written information security policy (“WISP”) is to create effective administrative, ...

An information security policy is the foundation of an enterprise security program, ideally establishing in clear language what the organization expects from its security operations based on both its ...

When was the last time your job dealt you a good kick in the teeth? If you’re an IT security professional, you probably remember. When it’s your job to define the boundary between users and the perils ...

Information security policies provide vital support to security professionals as they strive to reduce the risk profile of a business and fend off both internal and external threats. The trouble is ...

The purpose of this policy is to provide a security framework that will ensure the protection of University Information from Unauthorized Access, loss, or damage while supporting the open ...

Building and managing a security program is an effort that most organizations grow into overtime. I have worked with startups who had no rules for how assets or networks were used by employees. I also ...

ORLANDO — Focus and simplicity are key to developing and implementing companywide information security policies, according to IT managers at a panel discussion at the Infosec World conference here ...

The FBI is in the midst of a major rewrite of the security policy that sets minimum criteria for how its criminal justice information is protected. With the revamp, the bureau is aiming to make sure ...

Cybersecurity due diligence is quickly becoming part of standard best practices in Merger & Acquisition (“M&A”) deals. Traditionally, the primary goal of due diligence is to investigate the target of ...