INFORMATION SECURITY AND AUDIT
1. Overview of information security
2. Information and Network Security Policies
3. Cryptography and PKI
4. Network security applications
5. Design Principles
6. Compliance, Evaluation system and Law
7. Malicious logic and attacks
8. Vulnerability analysis and IT Audit
9. Intrusion detection and log analysis
LAB WORK -ISA
SOLVED PRACTICE QUESTIONS
PREV NEXT

SECURITY POLICIES ,TYPES OF POLICIES, CONFIDENTIALITY POLICIES,INTEGRITY POLICIES, HYBRID POLICIES

SECURITY POLICIES

Information system security involves a variety of policies, each focusing on different aspects of protecting information systems. 

TYPES OF POLICIIES

  1. Acceptable Use Policy (AUP):
    • Defines the acceptable and unacceptable use of organizational IT resources.
  2. Access Control Policy:
    • Outlines how access rights to information and resources are managed.
  3. Information Classification Policy:
    • Establishes a framework for classifying data based on its sensitivity and importance.
  4. Incident Response Policy:
    • Details procedures for responding to and managing security incidents.
  5. Data Protection and Privacy Policy:
    • Specifies how personal and sensitive data is protected and managed.

CONFIDENTIALITY POLICIES

Confidentiality policies focus on ensuring that sensitive information is accessible only to authorized individuals and entities. 

  1. Data Encryption Policy:
    • Requires encryption of sensitive data at rest and in transit to protect against unauthorized access.
    • Specifies encryption standards and protocols to be used (e.g., AES, TLS).
  2. Data Classification Policy:
    • Classifies data based on sensitivity (e.g., public, internal, confidential, top secret).
    • Defines handling and access protocols for each classification level.
  3. Non-Disclosure Agreements (NDAs):
    • Requires employees, contractors, and third parties to sign NDAs to legally bind them to confidentiality obligations.
  4. Employee Confidentiality Agreements:
    • Ensures that all employees understand their responsibilities regarding the protection of confidential information through signed agreements.
  5. Monitoring and Auditing Policy:
    • Implements regular monitoring and auditing to detect unauthorized access to sensitive information.
    • Uses tools like data loss prevention (DLP) and security information and event management (SIEM) systems.

INTEGRITY POLICIES

Integrity policies ensure that data remains accurate, complete, and unaltered except by authorized personnel.

  1. Data Integrity Policy:
    • Specifies methods for maintaining data accuracy and consistency.
    • Utilizes checksums, hashes, and cryptographic signatures to verify data integrity.
  2. Audit Trail Policy:
    • Maintains logs of system and user activities to track changes and detect unauthorized modifications.
    • Specifies the types of activities to be logged and the retention period for logs.
  3. Version Control Policy:
    • Implements version control mechanisms for documents and code to track and manage changes.
    • Ensures that only the latest and approved versions are used.
  4. Backup and Recovery Policy:
    • Ensures regular backups of critical data to prevent loss and facilitate recovery in case of corruption or accidental deletion.
    • Specifies backup schedules, storage locations, and restoration procedures.
  5. Incident Response Policy (for integrity incidents):
    • Defines procedures for detecting, reporting, and responding to incidents that may affect data integrity.
    • Includes steps for assessing the impact, containing the incident, and restoring data.

HYBRID POLICIES

Hybrid policies integrate multiple security aspects to provide comprehensive protection. They address various security objectives, such as confidentiality, integrity, and availability, in a unified manner.

  1. Access and Authentication Control:
    • Combines access control policies with robust authentication mechanisms.
    • Ensures that users are authenticated and authorized before accessing resources.
  2. Data Protection and Encryption:
    • Integrates data protection measures with encryption policies.
    • Ensures that data is encrypted both at rest and in transit.
  3. Incident Response and Continuity Planning:
    • Merges incident response with disaster recovery and business continuity plans.
    • Ensures a coordinated response to security incidents while maintaining business operations.
  4. User Awareness and Training:
    • Combines security training programs with acceptable use and data handling policies.
    • Educates users on security best practices and policies.
  5. Monitoring and Auditing:
    • Integrates continuous monitoring with auditing and compliance requirements.
    • Uses monitoring tools and audit logs to detect and respond to security incidents.
PREV NEXT