Read this whole guide offline with no ads, for a low price!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Need more practice? 300 additional Security+ questions!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+
 9  Chapter 5:  Operational/Organizational Security (Domain 5.0; 15%)
      9  5.4  Policy and Procedures
           9  5.4.1  Security Policy

Previous Topic/Section
5.4.1.2  Due Care
Previous Page
Pages in Current Topic/Section
1
Next Page
5.4.1.4  Separation of Duties
Next Topic/Section

5.4.1.3  Privacy

Privacy laws exist in most countries. Legal infractions can be found in a variety of forms. For example, without policies in place that state the company has a duty to inspect the companies' computers for unapproved software or to examine systems for Trojan Horses, an employee can make a case against the company for invasion of privacy.

AUP = CYA

A well-prepared Acceptable Use Policy is an important part of operational security.

More and more organizations are monitoring one or more aspects of network use. Some experts feel that unless an acceptable use policy states otherwise, employees have a reasonable expectation of privacy of their electronic mail, files and network communications. This “reasonable expectation” could result in a challenge for you if you ever needed to present electronic evidence to back up an action such as a staff dismissal. Therefore, we strongly recommend that you put a policy in place stating what you are monitoring.


Additionally, clients of the company have a legal right to expect that their business with a firm is kept private. Some sectors such as the medical industry have additional demands placed on them, such as those described by the HIPAA regulations for the health care industry.


Previous Topic/Section
5.4.1.2  Due Care
Previous Page
Pages in Current Topic/Section
1
Next Page
5.4.1.4  Separation of Duties
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.