Information Systems Security Update

Information Systems Security Policy Update - 08/08/05

Bankpolicies.com is proud to announce the immediate availability of our revised Information Systems Security Policy Template.

What's New

Topic 23 - Spyware Procedures. This topic was incorporated in response to the FDIC's Financial Institution Letter (FIL) dated July 22, 2005 that informs of the risks posed by spyware and the actions by financial institutions to mitigate those risks.

http://www.fdic.gov/news/news/financial/2005/fil6605.html

Topic 24 - Voice Over Internet Protocol Procedures. This topic was incorporated in response to the FDIC's Financial Institution Letter (FIL) dated July 27, 2005 that informs of the security risks associated with voice over Internet protocol (VoIP) and the action by fincnail institutions to mitigate those risks. VoIP refers to the transmission of voice communications (telephone systems) over the Internet rather than through the public switched telephone network (PSTN).

http://www.fdic.gov/news/news/financial/2005/fil6905.html

Product Contents

Purpose and Contents - Topic 1

Introduction - Topic 2

Policy Description, Authority and Scope - Topic 3

Risk Management and Security Assessment - Topic 4

Risk Management - Outsourcing - Topic 5

Definitions - Topic 6

Organization, Responsibilities and Administration - Topic 7

Classification of Information Resources and Business Continuity - Topic 8

Information Protection Standards - Topic 9

Information Systems Security Policy - Topic 10

Core Processing Policy - Topic 11

Hardware and Software Acquisition - Topic 12

Patch Management - Topic 13

Naming Convention Standards - Network - Topic 14

Naming Convention Standards - Users - Topic 15

Password Control - Topic 16

Mainframe and LAN User Access Requests - Topic 17

Telecommuters and Off-Site Users of Mainframe and LANs - Topic 18

Intrusion Detection Systems and Monitoring - Topic 19

Fax Machines - Topic 20

Wireless Networks - Topic 21

Instant Messaging - Topic 22

Spyware Procedures - Topic 23

Voice Over Internet Protocol Procedures - Topic 24

Resuming or Revoking Employee Passwords and User IDs - Topic 25

Internet Policy and Access - Topic 26

PC Information Protection - Topic 27

Tape Backup Routines - Topic 28

Tape Backup Operating Procedures - Topic 29

Physical Protection of Microcomputers and Related Equipment - Topic 30

Management Controls of Stand-Alone Personal Computers - Topic 31

Virus Control for Microcomputers and Servers - Topic 32

Staff Computer Training - Topic 33

Service Requests and Problem Reporting Procedures - Topic 34

Incident Response and Preparedness - Topic 35

Exceptions of Information Protection Standards - Topic 36

Retention of Documentation - Topic 37

Includes the following form templates:

Information Systems Contractor Protection Acceptance (1 page)

Information Systems Employee Protection Acceptance (1 page)

Information Systems Exception to Standards (1 page)

Information Systems Facilities Access Request (1 page)

Information Systems Intrusion Risk Assessment (4 pages)

Information Systems Patch Management Control Form (1 page)

Information Systems Problem Worksheet (1 page)

Information Systems Program Access Assessment (5 pages)

Ordering Information

This revised product is available to purchase from Bankpolicies.com for:

$400.00 - List Price

- or -

$50.00 - Update Price (applies only to clients who have previously purchased our Information Systems Security Policy Template)

If you have ordered this product within the past 30 days since 08/08/05 you are eligible to receive the Product Update at no charge.

Click here to place an order for this product. Clients who are eligible for our Legacy Rewards Volume Discount can apply their applicable discount level to the upgrade or list price (whichever applies).

NOTE: Refer to our Place an Order page for important information regarding payment terms and our return policy. Orders placed for Product Updates are only available directly through Bankpolicies.com.