What are Policies and Procedures?
Policies are high-level documents that establish organizational rules and guide decision-making. They represent the philosophy of an organization and the strategic thinking of senior management and business process owners.
Procedures are detailed documents that establish the process for how to carry out these policies. Procedures are often required for compliance reasons, facilitate a more thorough training process, and help to retain important information that helps your organization prevent errors.
Policies and procedures reflect management guidance and direction in developing controls over information systems and related resources. Installing strong policies and procedures for your organization affords greater protection of your most sensitive data while also meeting regulatory and compliance standards.
How will WCG help ?
Wilson Consulting Group (WCG) assists organizations in developing sound policies and procedures to ensure proper control over information systems and related resources.
The development and implementation of these policies and procedures enable organizations to comply with applicable regulations and standards, such as GLBA, HIPAA, NIST Series, ISACA CISA,PCI DSS, ISO 27002, and CobiT.
WCG assists organizations to develop policies and procedures for:
- Acceptable Use
- Access and Authentication Management
- Backup and Restore
- Business Continuity and Disaster Preparedness
- Business Impact Analysis
- Change Control
- Configuration Management
- Cryptographic Controls
- Data Classification
- Data Retention and Disposal
- Gap Analysis
- Incident Response
- Information Security
- Key Management
- Mobile and Telecommuting
- Malicious Software
- Media Handling
- Physical Security
- Risk Management
- Security Awareness and Training
- System Logging and Monitoring
- Vulnerability and Patch Management