POLICIES


Importance Of Policies To Reduce Risks 

Organization implement policies to reduce risks without policies their are no rules and that way the risk could be so high in organization

Types Of Policies

Privacy Policies : A privacy policy is a statement or a legal document that discloses some or all of the ways a party gathers, uses, discloses, and manages a customer or client's data. It fulfills a legal requirement to protect a customer or client's privacy.

Acceptable use policy : An acceptable use policy is a set of rules applied by the owner, creator or administrator of a network, website, or service, that restrict the ways in which the network, website or system may be used and sets guidelines as to how it should be used.

Security policy : A security policy is a document that outlines the rules, laws and practices for computer network access. This document regulates how an organization will manage, protect and distribute its sensitive information (both corporate and client information) and lays the framework for the computer-network-oriented security of the organization.

Mandatory vacations : Mandatory vacations are designed to ensure that someone gets out of the office for a period of time requiring someone else to perform their job. The goal is to reduce the incidents of fraud or embezzlement.  If an employee knows that someone else will be covering their work for a period, they also know the risk of being discovered is much higher.

Mandatory vacations are frequently required in different banking institutions. Employees are often required to take a vacation of at least five consecutive workdays.

Job rotation : Job rotation is a technique used by some employers to rotate their employees' assigned jobs throughout their employment. Employers practice this technique for a number of reasons. It was designed to promote flexibility of employees and to keep employees interested into staying with the company/organization which employs them. Also it gives them the opportunity to develop skills in a variety of changing jobs. There is also research that shows how job rotations help relieve the stress of employees who work in a job that requires manual labor.

Separation of duties : Separation of duties is the concept of having more than one person required to complete a task. In business the separation by sharing of more than one individual in one single task is an internal control intended to prevent fraud and error. 

Least privilege : The principle of least privilege (POLP) is an information security term that refers to a design objective in computing that a given user should only be able to access the information and resources he or she requires for legitimate reasons.

No comments:

Post a Comment

Popular Posts