Download Free FERC-NERC to ISO 27002 Policy Map

Download Free FERC-NERC ISO 27002 Policy Map. This document explain how specific policy topic ISO 17799/27001 map to the cyber security requirements of the Mandatory Reliability Standards for Critical Infrastructure Protection from Federal Energy Regulatory Commission (FERC).
- Read more
- 471 reads
Download Free IT Security Awareness and Training Program Plan Templates

Download Free IT Security Awareness and Training Program Plan Templates. This templates consist of explanation and sample of Background of the Awareness and Training Program such as: OMB A-130, Appendix III, Federal Information Security Management Act (FISMA) or Specific department and/or agency policy (and other relevant information or rationale that may drive an awareness and training program and plan). This template also give complete
- Read more
- 635 reads
HIPAA Password Security Policy Templates

Download free HIPAA, PCIDSS and ISO27001 Password Security Policy Templates. This Templates covering basic security policy such as:
- To keep passwords confidential, which includes in no circumstances giving them to a third party, whatever the ostensible reason.
- To avoid keeping any paper or electronic record of passwords (unless this can be securely stored – which means encryption and strong, two-factor access control protection).
- Read more
- 582 reads
SAS 70 Compliance Data Center Physical Security Checklist

Download free SAS 70 (Statement on Auditing Standards no 70) for Data Center Physical Security Checklist. This checklist could be used to assess whether your Data Center already have enough security level against threat. This checklist cover access control
- Read more
- 1118 reads
Download free SAS 70 Type I and Type II Compliance Procedure

This SAS 70 (Statement on Auditing Standards no 70) Compliance Procedure could be used to help you and your company complying against Statement of Auditing Standards. This step by step procedure covering SAS 70 Type I or Type II Field work. For example covering Initial discussion between service auditor and service organization for the purposes of understanding the scope, timing and final deliverables of the audit.
- Read more
- 645 reads