IT Security Policy

Select a type of business of your choice. This can be a university/college/school, factory, retail, consulting, bank, etc.
Research similar types of businesses online and view different security policies. This will help you learn the different aspects of such policies. This includes policy structure, details (look below), how it is created, who is responsible for it, etc.

At a minimum, your report MUST include:

1)    Introduction: Business   Executive Summary

    What is it?
    Why security is important?
    What are some of your vulnerabilities?

2)    Who
    Who is responsible for this policy?
    How is the policy going to be enforced?
    How do you respond to incidents?

3)    Policies

    User Access (Examples: Who, What, Password, lockout)
    VPN (Remote Access)
    Wireless and Wired connectivity (Mixed network environment)
    Server Load Balancing
    Disaster Recovery, Fault Tolerance, Back up
    Security Devices (Firewalls, Proxy Servers, etc..)
    DMZ
€¢    How does it work?
€¢    Web Servers
€¢    Email Servers
    Miscellaneous (other security concerns and policies, if any)

4)    Conclusion /Recommendation