An information resource for Federal IT security policy, including the FISMA, HSPD-12, FDCC, DIACAP, NIACAP and OMB directives.

20th NISSC Internet Technical Security Policy Panel

Security standards are needed by organizations because of the amount of information, the value of the information, and ease with which the information can be manipulated or moved.

Information hub for the enterprise discussing network security, storage compliance, CRM, and human resource.

This paper is intended to address the importance of having a written and enforceable Information Technology (IT) security policy, and to provide an overview of the necessary components of an effective policy.

A report on Acceptable Usage Policy: what corporations expect of it, a case study, and a framework for creating your own policy.

A strong web Security Policy is key to keeping your company safe in the net-centric world.

Assess your company's Return on Information Security Investment

The use of Group Policy to simplify the network security tasks that you face as a network administrator. With Group Policy, you can ensure that the machines on your network remain in a secure configuration after you deploy them.

If your company doesn't have written security policies, it's time it did, and Mark Edwards has some resources to help.