It244

It244

Axia College Material
Appendix B

Information Security Policy

Student Name: Julia Almaraz

Axia College

IT/244 Intro to IT Security

Instructor’s Name: Thomas Joseph

Date: August 6, 2011

  Table of Contents

1. Executive Summary 1

2. Introduction 1

3. Disaster Recovery Plan 1

  3.1. Key elements of the Disaster Recovery Plan 1

  3.2. Disaster Recovery Test Plan 1

4. Physical Security Policy 1

  4.1. Security of the facilities 1

  4.1.1. Physical entry controls 1

  4.1.2. Security offices, rooms and facilities 1

  4.1.3. Isolated delivery and loading areas 2

  4.2. Security of the information systems 2

  4.2.1. Workplace protection 2

  4.2.2. Unused ports and cabling 2

  4.2.3. Network/server equipment 2

  4.2.4. Equipment maintenance 2

  4.2.5. Security of laptops/roaming equipment 2

5. Access Control Policy 2

6. Network Security Policy 3

7. References 3

  Executive Summary

Due in Week Nine: Write 3 to 4 paragraphs giving a bottom-line summary of the specific measureable goals and objectives of the security plan, which can be implemented to define optimal security architecture for the selected business scenario.

      This new security plan provides a comprehensive strategy for implementing a secure and safe work place environment. Several new policies and procedures will be put into place as a result of these new ideas. Sunica Music and Movies will have no problem adhering to the promised plan based on its assets and staff experience.
      The goals included will implement new user account controls and access policies. These goals will allow the company to monitor and view all of the company activity no matter who is using the network. A system of checks and balances will prevent any one person from having any major authority.
      A new network security overhaul will have to be put into place due to the fact that Sunica Music and Movies does not currently really have...