Internet Security policy
Acceptable email use policy
The use of email by the workers of this organization are only supported if that use is in agreement with the goals as well as objectives of an organization (Khelf, 2018). This also applies to this organization.
Nevertheless, this organization has a policy regarding email use, in which the employees need to:
- Comply with the current legislation
- Use their email in an acceptable manner
- Do not perpetuate unnecessary risks to the company by the use of their email
Unacceptable behavior
The following behavior by an employee is considered unacceptable: Don't use plagiarised sources.Get your custom essay just from $11/page
- Application of this company’s communication addresses especially email in sending personal emails as well as chain letters
- Distributing or sharing, storing images, texts, or any file contents which are considered to be illegal, unethical, or not in line with the goals of this company.
- Distribution, dissemination as well as storage of images as well as any content which are discriminatory or offensive.
- I am gaining access to copyright information in a way which not acceptable.
- Breakage into the system of this company or any organization as well as unaccepted usage of passwords as well as mailboxes.
- Broadcast of unsolicited individual views on social, religious, political as well as all other non-business related issues
Monitoring
This organization is conscious of the importance of email and that it is a valuable thing in a business environment. However, its misuse is likely to lead to adverse or undesired effects on the productivity of the employee as well as the business reputation.
Moreover, all the emails of the company, as well as their resources, are entirely for business purposes. As a result, the organization has the right and privilege of examining as well as inspection of any systems as well as data recorded in them.
To guarantee consistency with this policy, the organization, at the same time, maintains all authority to utilize observing software to check upon the utilization and email contents. Such monitoring is for real purposes just and will be attempted as per a strategy concurred with employees.
Sanctions
Where it is accepted that an employee has neglected to conform to this arrangement, they will confront the organization’s disciplinary strategy. If the worker is found to have broken the policies, they will face a disciplinary punishment running from a verbal notice to expulsion. The substantial penalty applied will rely upon elements, for example, the level of noncompliance as well as the employee’s disciplinary record in this organization.
Agreement
The entire fraternity of this organization who have the privilege of using the company email must sign this policy agreement, which confirms their understanding as well as acceptance of the policy agreement.
Acceptable internet use policy
As per Buhrendorf (2019), Internet usage by the employees of an organization is permitted but only for the purposes which are in line with the goals of an organization.
Nevertheless, this organization has a policy regarding internet use, in which the employees need to:
- Comply with the current legislation
- Use the internet in an acceptable manner
- Do not perpetuate unnecessary risks to the company through the use of internet
Unacceptable behavior
In particular, the following is deemed unacceptable use or action by employees:
- Visiting of dirty sites which are known to contain illegal contents, these include pornographic material sites and so on
- Using the internet in the perpetration of any form of fraud, software, films as well as music privacy.
- You are using the internet in sending offensive content to other people in or outside of the company.
- They are downloading any forms of commercial software as well as other copyrighted items that are owned by third parties unless the downloads are covered as well as permitted in the business agreement.
- Hacking or attempting to hack into unauthorized systems
- Writing or publication of any defamatory content either about the company, management as well as colleagues.
- The revelation of the confidential information of this organization in individual online postings, these include financial information as well as information about the customers of this company
- Pursuing deliberate actions which waste the efforts of the staff as well as the networked resources
Company-owned information held on third-party websites
If you produce, gather as well as process business-related data throughout your work, the data remains the property of this organization. This incorporates such data put away on outsider sites, for example, webmail specialist providers and person to person communication sites, for example, Facebook and LinkedIn.
Monitoring
This organization is conscious of the importance of the internet and that it is a valuable thing in a business environment. However, its misuse is likely to lead to adverse or undesired effects on the productivity of the employee as well as the business reputation.
All the internet related resources in this organization are provided for business purposes only. As a result, the company maintains the privilege of monitoring its internet as well as network traffic and visited internet sites.
Sanctions
Where it is accepted that an employee has neglected to conform to this arrangement, they will confront the organization’s disciplinary strategy. If the worker is found to have broken the policies, they will face a disciplinary punishment running from a verbal notice to expulsion. The substantial penalty applied will rely upon elements, for example, the level of noncompliance as well as the employee’s disciplinary record in this organization.
Agreement
The entire fraternity of this organization, who has the privilege of using the company email, must sign this policy agreement, which confirms their understanding as well as acceptance of the policy agreement.
Password Protection Policy
Overview
Passwords are the most crucial feature of computer security. They are the main thing as far as the protection of company accounts are concerned. Choosing a weak password is likely to compromise the entire network of this organization.
Purpose
This policy aims to establish a standard for strong passwords creation as well as passwords protection.
Scope
The scope of this policy includes all persons who have or are responsible for an account (or any form of access which supports or necessities a password) on any system that resides at any of this organization’s facility, has access to the [organizations network.
General
The system levels of this company must be changed every thirty days.
The system-level passwords should be part of the information protection administered global password management database
Passwords must not be put in email messages or any form of communication
Password requirements
When constructing passwords for any accounts in this organization, the passwords:
Must have at least ten characters
Must not be similar to the use of ID
Must expire within 30 days
Password Deletion
All passwords which are not used anymore must be done away with altogether. This includes incidences like when the user leaves the company, retires, and so on.
Penalties
Any employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.
References
Gauchat, G. (2015). The political context of science in the United States: Public acceptance of evidence-based policy and science funding. Social Forces, 94(2), 723-746.
Buhrendorf, E. (2019). Outsourcing IT is a money-saving cyber safety net for company data. Fairfield County Business Journal, 55(20), 12. Retrieved from http://search.ebscohost.com/login.aspx?direct=true&AuthType=shib&db=b9h&AN=136657455&site=eds-live
Shelf, R., & G-Z, N. (2018). IPsec/Firewall Security Policy Analysis: A Survey. 2018 International Conference on Signal, Image, Vision, and Their Applications (SIVA), 1. Retrieved from https://doi.org/10.1109/SIVA.2018.8660973