where policy meets technology

  

( (01344) 780000   * info@armana.co.uk 

 

 
 
 

Security Policy Consultancy

Writing an effective security policy is not as simple as it may seem. Before the policy is creating a number of questions should be asked to help shape the policy. If your organisation already has an information security policy, there are still a number of questions that should be asked about it, such as:

  • Is it line with the current data protection and freedom of information acts?
     

  • Does it go far enough in protecting the employee and employer alike?
     

  • From a legal standpoint will it stand up in a court of law and prove that a "duty of care" has been initiated thus giving a degree of protection to the board?
     

  • Is it written in an unambiguous way so that employees have a thorough understanding of it?
     

  • From a technical point of view does it go far enough or maybe too far?
     

  • Is it in line with current good practice standards such as BS7799 or the ISF recommendations?


The answers to these and similar questions will help shape the policy and questions like these should be asked on a regular basis; driving forces such as legislation are constantly changing so it is important to know how your policy stacks up against such drivers.

At Armana, we recognise that writing security policies is not your main business and we can take the burden of policy writing completely (or just review a current policy) away from a company in order that they are free to concentrate on your core business. We will ensure that it is updated in line with the changes to the laws which are pertinent to a particular business. We will if needs be deploy it on site and ensure affirmation of its contents by your staff.
 

  

 

 

 

 

 

 

 

 

More Information
Contact Us