CDW White Paper Sample

There’s no shortage of security technologies that can help organizations protect their networks, systems and information. firewalls, intrusion detection and prevention systems, antivirus software, encryption and other tools can be extremely effective in thwarting attacks and preventing unauthorized users from getting into systems and networks.

However, an effective information security strategy must go beyond technology implementation. Businesses need to deploy a comprehensive network security policy that ensures the tools are being used to the maximum effectiveness. It also should specify that employees -- and in some cases business partners and customers -- are following best practices to ensure that networks and sensitive data are not being compromised.

What exactly is a security policy? According to a “policy primer” produced by the SANS Institute, the largest source for information security training, certification and research in the world, a policy is a “formal, brief and high-level statement or plan that embraces an organization’s general beliefs, goals, objectives and acceptable procedures for a specified subject area.”