Security policies and practices for small IT related businesses



[Name of the Instructor]

[Date of Submission]

Abstract

Security policies and practices serve as a framework for the effective functioning of an organization. In the context of small IT related business, these policies and practices are consider to be of immense importance. The aim of this research paper is to highlight the security policies and practices for small IT related businesses. A number of aspects related to the topic will be covered so as to provide support to the main theme of the paper.

Table of Contents

Introduction1

Security Policy1

Need for security policies and why small businesses face difficulty in having security policies and practices2

Elements of a Security Policy Document for small IT businesses3

Purpose of the security policy3

Scope4

Responsibilities4

Objectives4

Assessment of threats and risks4

Areas to be covered in the Security policies and practice of small IT business5

Physical Security Policies5

Network Security Policies5

Host security Policies5

User Security Policies6

Policies to handle incidents6

Audit Policies6

Absolute necessary actions a small IT related business should take7

Highly recommended security practices for a small IT related business7

Conclusion8

References9

Security policies and practices for small IT related businesses

Introduction

Information technology businesses have been expanding all over the globe as a result of the technological advancements. Small businesses are also becoming a part of the industry with this global expansion. Information security is actively pursued by the large businesses in United States and other first world countries. These businesses remain equipped with the technology, people, budgets and other resources so as to have a secure practice and policy of effective nature. As a result these businesses are difficult to be hacked by the cyber criminals. The present scenario provides with a trend of the focus of hackers on the less secure small businesses. Therefore, it is very important that the information, system. Policies and networks must be properly secured by each of the small Information technology business. This research paper is written with an objective to highlight the security policies and practices for small IT related businesses.

Security Policy

A security policy can be defined as a document that comprises of rules, laws and practices for the access of computer network. This document serves as a tool to regulate the way an organization can manage, protect and share its sensitive information with its various stakeholders.

Some of the small businesses do not consider the security of information as a high priority, but for their customers, employees, and trading partners' information security and practices remain very important. The size of the small business varies according to the nature of their business, but in typical terms it is considered as a business that provides working opportunity up to 200 employees. The number of small businesses in United States total to over 95% of the overall business sector (Kissel, 2009). 50% of the Gross national Product in the country is provided by these small businesses (Kissel, 2009). It highlights that the small businesses constitutes a very important part of the economy of country. They are important elements of the critical economic and cyber infrastructure of a ...