Week 12 - Paul-Jones-DF/SYS-140-Journals GitHub Wiki

New Terms And Definitions

Non-Compliant systems: Any electronic system present and using a company network that does not adhere to the security guidelines of the company.

Data loss prevention: Software designed to prevent the transfer of company files and information outside the company

When it comes to security policies if an organization doesn't have any in place, which would you put in place in order from most urgent to least urgent in Table 18.1? Please provide a brief explanation of why.

Emergency procedures

Physical access

Password policy

Antivirus

Email usage

Remote access

Acceptable use plan

The first action you should take to protect your company is to create a response plan, this is because it will take time to set up true security, and having a baseline response to any scenario will help mitigate the damage done. After that, it is primarily a question of the size and works the organization does. Some organizations need to worry about cyber attacks attempting to gain information contained by the company.