How to Draft Effective Security Policies - Absolute Blog | The Leader in Endpoint Visibility and Control | Absolute

Products
Back
Products

Absolute Resilience

Extend self-healing capabilities to devices and apps and ensure that critical controls are always present and working as intended.

Absolute Control

Take action on devices to protect data, or maintain and prove compliance.

Absolute Visibility

Manage, track and, recover devices, with an unbreakable connection to every endpoint.
Platform

Compare Products

Requirements

Device Compatibility

Persistence® Technology

Application Persistence

Mobile App
Platform Updates

Security Information

Absolute Services

Technical Support

Absolute for Home
Compare All Product Features
Solutions
Back
By Team

IT Solutions

Simplify your IT asset management by tracking and securing all your devices and data with one zero-touch, automated platform.

Security Solutions

Maximize the value of your security spend with an unbreakable, undeletable connection to all your devices and data.
Use Cases

Device Lifecycle Management

Automate Hardware Audits

Automate Software Audits

Improve Helpdesk Efficiency

Find and Fix Vulnerabilities
Enforce Security Standards

Detect Endpoint Risks

Respond to Endpoint Risks

Prove Compliance

GDPR Compliance
Register for a Free Demo
Industries

Back

By Vertical

Healthcare

K-12 Education

Higher Education

Government

Professional Services

Financial Services

Featured Resources

Research Study

Forrester study reveals new endpoint security challenges

Executive Report

The Third Question: What CISOs Aren’t Asking and What’s at Stake

Register for a Free Demo
Partners
Back
The Absolute Ecosystem

Device Manufacturers

Firmware-embedded by these leading systems manufacturers

Resellers

Available from resellers and distributors worldwide

Independent Software Vendors

Extend Absolute’s self-healing capabilities to your applications

Managed Service Providers

Manage customer device and remediate risks from a single cloud-based console
Quick Links

Device Compatibility

Our Partners

Become a Partner

Partner Portal

Video: Absolute for Resellers and MSPs
Become a Partner
Resources
Back
Featured Research

Take A Proactive Approach To Endpoint Security

Forrester study reveals new endpoint security challenges.

What CISOs Aren’t Asking and What’s at Stake

Global CISOs share the biggest challenge facing cybersecurity teams today.
Learn

Resource Center

Distance Learning Solutions Hub

COVID-19 Data Hub

Absolute Undeletable Podcast

Customer Stories

Blog
Connect

Events & Webinars

Support

Our Partners
View All Resources
Company
Back
Absolute Software

About Us

Learn why Absolute Software is the leader in Endpoint Resilience®

Investor Relations

Review financial performance, stock info, and investor resources.
Company Detail

Leadership Team

Board of Directors

Industry Advisors

Legal

ESG Policy
Press Releases

In the News

Logos

Careers

Contact Us
Register for a Free Demo
Request a Demo

COVID-19 Dashboard

By: Absolute Team | 4/16/2010

Michael Overly of CSO Online put together a fantastic point-by-point explanation of how to draft more effective security policies.

It's a quick and dirty summation of key points you should consider in your policy creation process. In brief, they include:

The policy should be understandable by all
The policy should explain why it is important - and why all in the company consider it so
The policy should lay out repercussions for failure to comply
Employees should sign the policy
The policy should be reviewed and updated often

Do you have an effective security policy?

To continue with this topic, the FTC also put together a list of 5 key issues your data security plan should address (see the tutorial on their website). This plan only talks about data security - not a comprehensive security policy - but since it was of a related topic, I thought I'd also share their tips!

Awareness: What data is being stored? Where?
Minimize: Only keep data you need.
Secure: Assess your risks and security options.
Trash it: Delete info periodically.
Make a plan: For a data breach & how to deal with it.

Here are some of our past posts on security policies:

Absolute Team

All Posts By This Author