Security Awareness and Training Policy
A security policy is only as valuable as the knowledge and efforts of those who adhere to it, whether IT staff or regular users. Understanding the importance of computer and network security, and building accountability for these concepts, is critical to achieving organizational goals.
The purpose of this policy from TechRepublic Premium is to describe the necessary requirements for users to receive contextual security training that relates to the scope of their duties and responsibilities. This policy contains tips for IT staff on creating the related programs and instructions for users on how to adhere to them.
From the policy:
Security should not be seen as a separate or “when convenient” concept. The processes that deliver awareness and training to personnel should also be incorporated into business strategies, such as secure application development or system configuration. This can be done only by establishing measurable goals and tracking progress to ensure that these goals are met and that appropriate staff are recognized and held to these efforts. Management feedback should be provided to accountable individuals on a steady and documented cycle.
The download comprises a 10-page PDF and Word document.
Previously priced at $99, this is now available to download for $9. Or free with a Premium annual subscription: click here to find out more.
TIME SAVED: It took 16 hours of writing, editing and research to create this content.