|
Once the right person has been found, evaluate the new CISO's security program and create a plan to close any security and competency gaps.
|
|
|
Use this tool to create a comprehensive, high-level view of your information security process and technology maturity.
|
|
|
Once you have completed the CISO Stakeholder Power Map activity, use this tool to create a strategy to cultivate your stakeholder relationships, and manage each...
|
|
|
Once you have assessed your competency, process, and technology gaps, use this tool to set goals and create an action plan to remediate any gaps.
|
|
|
Implement your plan and set a time to reassess the progress of the CISO and the security program in the future. Continuing reassessment is necessary for continuing success.
|
|
|
The administrative rights policy grants access to individuals’ desktop, laptop, or other end-user devices within a company for those who are qualified and cleared to use...
|
|
|
The anti-virus policy provides a computing network that is virus-free; this policy provides instructions on measures that must be taken by company employees to help...
|
|
|
The data center access policy will outline the standards for regulating access to the company data center(s).
|
|
|
The email acceptable use policy outlines the standards for appropriate use of corporate email accounts.
|
|
|
The instant messaging usage and security policy outlines the standards for the usage of, and security controls associated with, corporate instant messaging.
|
|
