|
Cyber
Crime and Security Incident Policy
Policy No: 1.07
Printable Version
PURPOSE
The purpose of
the Cyber Crime and Security Incident Policy is to ensure
that the correct procedures are followed should an event of
cyber crime or a security incident be experienced by The
Fake Chicken Company. The impact a security incident will have on business
continuity will depend on how well it is handled.
SCOPE
This policy affects all
users of computer systems and networks owned or managed by
The Fake Chicken Company.
POLICIES
1.1.1 All significant errors, incomplete updates and processing
anomalies in live applications must be promptly reported to
the Information Systems Helpdesk.
...and more
2.1.1 Unless
compelled by law to disclose attacks against its computer
systems or networks, The Fake Chicken Company does not publicly report these
incidents.
Explanation
The intention of
this policy is to keep The Fake Chicken Company out of the newspapers and
helps keep public confidence high...
...and more
2.2.1 Extended
investigations of security breaches must be performed while
the suspected staff member is given leave. The
reason for a suspect's leave must not be
disclosed to co-workers without the express permission of
the Chief Executive Officer.
Explanation
The intention of
this policy is to provide management with time to gather the
information it needs to determine if an employee was the
perpetrator of an alleged crime or abuse...
...and more
Top
3.1.1 Detailed
procedural documentation must be developed by the IT Manager to cover all security
related contingencies. All technical systems staff must be
familiar with the procedures and the consequences of their
actions or lack of it.
Procedure for Handling Minor Incidents
...and more
3.2.1 The
IT Manager must establish a
notification system allowing
users to promptly inform the
appropriate staff about suspected information security
problems.
...and more
Top
© 2004 All Rights
Reserved Kaon
Security Ltd |
BS 25999 Standard No
Match
