The purpose of this paper is to take the wide variety of federal government laws, regulations, and guidance combined with industry best practices and define the essential elements of an effective IT security program. An effective program includes many elements and the task seems impossible as you begin reading the literally thousands of pages of security documentation published by the National Institute of Standards and Technology (NIST), the Office of Management and Budget (OMB), the National Security Agency (NSA), and the General Accounting Office (GAO), just to name a few. This paper will highlight important elements in a short, easy to read guide. This paper is not intended to identify every security program element in detail, but should give the reader a good basis on how to implement an effective security program.
Read Entire Paper
E-Mail Link
Your IP address will be sent with this e-mail
