08/04/2003
I am in the process of revamping the policies for our IT department. These policies include Information Security Program, Internet Usage, E-Risk, Disaster Recovery, On-Line Privacy, EDP/End User, and Electronic Banking. Do you have any suggestions on where I can get templates for these policies?
05/29/2003
03/10/2003
01/20/2003
Would someone share your security procedures for branch offices in the event of an advance knowledge of an expected disaster, such as a flood?
05/20/2002
In regards to disaster recovery procedures: One of the major concerns in a business resumption plan is the notification process. From past experience, this is the hardest to address. Living in an earthquake area, anytime we experience an earthquake, the phone system does not work. Cell phones are also worthless, due to excessive use. Sometimes the Internet is available, providing power is on. Do you have any suggestions on how I could notify my Crisis Team at a minimum? The only thought I have, is that they would report to a designated location without notification. That could also be risky, if the prearranged location had a great deal of damage.
05/06/2002
We are considering creating a position to manage information security and possibly business recovery. I'm looking for some guidance on what the level of this position should be, and who it would report to. Should it report to IT? Should it be independent? Should it be a senior level position?
04/22/2002
An Ounce of Prevention . . . Contingency Planning as a Strategic Tool
by D. Trent Fleming, BOL Guru
04/01/2002
Where's a good source for obtaining the basic knowledge needed for a novice to conduct an audit for the areas electronic banking and Internet banking?
11/05/2001
11/05/2001
Where can I find information on reporting to Board of Directors on Security annually?