CodeSWAT Security Policy outlines specific requirements or rules implemented to ensure that Customer data is protected. We divided our security practices in four groups: Computer Security; Network Security; Server Security.
Computer security
The intent of this policy is to outline the acceptable use of computers, CodeSWAT databases in order to secure CodeSWAT from risks and network systems attack.
Policy:
• Employees should take precautions to keep all data secure.
• Employees are responsible for the security of their passwords. Passwords for system access level should be changed every 90 days, passwords for user access level should be changed every 180 days.
• All user-level and system-level passwords must contain at least five upper case …show more content…
• When working with personal data, employees should ensure their computers are secured with a password-protected screensaver which locks your computer when the screen saver is on.
• Employees are not allowed to save copies of personal data to their computers.
Network security
The policy applies to employees who use computing or networking resources to access the Internet. The intent of this policy is to outline the standards for Internet usage, as well as connecting to CodeSWAT internal network from any host, or utilizing VPNs to access the CodeSWAT network. The policy is expected to protect CodeSWAT sensitive or confidential data and intellectual property against unauthorized use, loss or damage.
Policy:
• Internet access is used for business purposes only.
• To prevent virus problems each employee should use the supported anti-virus and keep it up-to-date, avoid flash drive sharing, scan flash drives from an unknown source for viruses before using it.
• Critical data and system configurations should be backed up on a regular basis, the data should be stored in a safe
Computer security
The intent of this policy is to outline the acceptable use of computers, CodeSWAT databases in order to secure CodeSWAT from risks and network systems attack.
Policy:
• Employees should take precautions to keep all data secure.
• Employees are responsible for the security of their passwords. Passwords for system access level should be changed every 90 days, passwords for user access level should be changed every 180 days.
• All user-level and system-level passwords must contain at least five upper case …show more content…
• When working with personal data, employees should ensure their computers are secured with a password-protected screensaver which locks your computer when the screen saver is on.
• Employees are not allowed to save copies of personal data to their computers.
Network security
The policy applies to employees who use computing or networking resources to access the Internet. The intent of this policy is to outline the standards for Internet usage, as well as connecting to CodeSWAT internal network from any host, or utilizing VPNs to access the CodeSWAT network. The policy is expected to protect CodeSWAT sensitive or confidential data and intellectual property against unauthorized use, loss or damage.
Policy:
• Internet access is used for business purposes only.
• To prevent virus problems each employee should use the supported anti-virus and keep it up-to-date, avoid flash drive sharing, scan flash drives from an unknown source for viruses before using it.
• Critical data and system configurations should be backed up on a regular basis, the data should be stored in a safe