Security Policy

Policy is a set of mechanisms by means of which your information security objectives can be defined and attained. Security policy governs a set of rules and objectives need by an organization.

The purpose of the information security policy is:

  • To prescribe mechanisms that help identify and prevent the compromise of information security and the misuse of data, applications, networks and computer systems.
  • To define mechanisms that protect the reputation of the organization and allow the organization to satisfy its legal and ethical responsibilities with regard to its networks' and computer systems' connectivity to worldwide networks.
  • To prescribe an effective mechanism for responding to external complaints and queries about real or perceived non-compliance with this policy.