May 2009
Beginner
336 pages
8h 28m
English
Content preview from Network Access Control For Dummies®
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
6.3. A Living Document: The Security Policy Lifecycle
Like with many of the policies that you deal with on a day-to-day basis as part of your job, the security needs of your organization continue to adapt and evolve over time. In some cases, new business initiatives drive security concerns. In other cases, new threats determine how you adapt security. Regardless of the reason, your security policies need to adapt, if only to add new policies when the security landscape changes or to remove old ones that no longer apply to your business needs.
You might think that you should change policies every time that a new threat comes to your attention. Nix that idea because end users and the people who must implement those policies will be hesitant to change frequently, and will likely be slow to adopt new changes.
Instead, we recommend that you
Make major policy changes only when absolutely necessary.
Roll out new policies only when you're sure that the organization needs them, and they'll stay current and applicable for the foreseeable future (in other words, you don't think that you will be changing them again next week).
6.3.1. Up to date
Keep tabs on the IT, and more specifically, the security industry. Monitoring new types of products, staying up to date by reading trade journals, and speaking regularly with peers in other organizations can help you stay on top of new developments in the security field.
While hackers exploit new classes of vulnerability and develop new types of attacks, ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.