Home page logo
/

basics logo Security Basics mailing list archives

Re: [OCLUG] Policy Manual
From: Gene Yoo <gyoo () attbi com>
Date: Wed, 26 Feb 2003 14:08:08 -0800

Chris Berry wrote:
Prior to my taking over here the previous admin had not bothered to write any policy. To try and increase professionalism and to get up to speed with HIPPA compliance I'm putting together a policy and proceedures manual. Here is a list of some of the documents I'm going to put together:

Criticality Analysis
Backup Plan
Disaster Recovery Plan
Emergency Plan
Testing & Revision Procedures
Access Authorization Policy (technical)
Access Control Policy (technical)
Access Modification Policy (technical)
System Activity Records
Compliance Certification
Supervision Policy
Temporary Authorization Records
Permanent Authorization Records
Clearance Policy
Security Policy
Security Training Records
Security Training Outline
Hardware Installation and Upgrade Policy
Software Installation and Upgrade Policy
Hardware Maintenance Policy
Software Update Policy
Security Testing Policy
Periodic Review Policy
Computer Hardware Inventory
Computer Software Inventory
Virus Checking Policy
Security Response Plan
Security Incident Report
Security Response Plan
Risk Management Plan
Risk Analysis
HIPPA Sanction Policy
Information Security Responsibility Outline
Physical Security Plan
Employee Termination Policy
Natural Hazards Defense Plan
Security Responsibilities Outline
Identity Security Policy
Data Segregation Plan

There will probably be quite a few more by the time I'm done. I'd like to ask if anyone has any documentation that they would be willing to share. In return, I'll happily provide the finished manual to anyone that would like a copy.

Chris Berry
compjma () hotmail com
Systems Administrator
JM Associates

"Linux and I have a love/hate relationship. I hate its complexity until I figure out how something works, then I love its power."

_________________________________________________________________
The new MSN 8: smart spam protection and 2 months FREE* http://join.msn.com/?page=features/junkmail


Orange County Linux Users Group   http://www.oclug.org
To unsubscribe mailto:majordomo () oclug org?body=unsubscribe%20oclug


sans has most of the sample documentation you mentioned above. gene
--
<<gyoo [at] attbi [dot] com>>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)

iQCUAwUBPhxERRxoVYCzmrKXAQJK5gP3Y7CTsFyKpEz2p5W4GWI9+qSm+kWfdJ0R
xNlma0Ma9rAL/OBJcZMo5IXyXas+3Edogbv4Al6dIf8lot1WS0Iaxxl/cg2f7gf+
otf7LfNpZDE/6OzR7A1qN6baPMLSjGzywwQWMfSVuWWb6kGQxMsA13Kn68G7Ozxs
5CODZqUPyg==
=AolA
-----END PGP SIGNATURE-----


  By Date           By Thread  

Current thread:
  • Policy Manual Chris Berry (Feb 27)
    • Re: [OCLUG] Policy Manual Gene Yoo (Feb 27)
    • <Possible follow-ups>
    • RE: Policy Manual Lubrano di Ciccone, Christophe (DEF) (Feb 28)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault