WRITING SECURITY DOCUMENTATION ISN'T ENOUGH

Please don't be fooled by infomercials that may lead you to think that an Information Security (INFOSEC) program is an electronic paper drill:  With legislative requirements, such as GLBA, writing documentation simply isn't enough:  The act of documenting your security architecture is critical to the success of your INFOSEC program, but you actually need to actively manage the program once developed, and follow the policies and procedures that you've written down. 

To be congruent in all these areas, you also need to conduct awareness training, whether you do it yourself, or outsource the effort, because you need to remind yourself, and your employees to follow the procedures you've established to protect the business.

Protect your business, protect your clients.©
We are the leverage you need.©
We're here to help.©

 TAI, Inc.©

 2020 © DataSecurityPlan.Com.  All Rights Reserved.

Leave a comment

Please note, comments must be approved before they are published

Back to ALL THINGS INFOSEC