Defines policy for analog/ISDN lines used for FAXing and data connections.

Requirements for effective virus detection and prevention. Written for a laboratory environment but easy to adapt for other settings. [MS Word]

Defines responsibilities regarding corporate acquisitions and the minimum requirements of an acquisition assessment to be completed by the information security group. [MS Word]

Policy to secure confidential information and technologies in the labs and protect production services and the rest of the organization from lab activities. [MS Word]

Sample policy to help employees determine which emails should be retained and for how long.

Sample policy intended to 'establish a culture of openness, trust and integrity'.

Defines the requirement that third party organizations requiring access to the organization's networks must sign a third-party connection agreement. [MS Word]

Defines requirements for securely storing and retrieving database usernames and passwords. [MS Word]

Defines requirements and authorizes the information security team to identify, assess and remediate risks to the organization's information infrastructure. [MS Word]

Defines standards for connecting to a corporate network from any host. [MS Word]