THE CONTROLIT USER GROUP - Dedicated to Supporting COBIT ™ Users

When it comes to keeping your company's systems secure, employees and managers play roles as important as those of the technological gadgets they deploy.

An archive website from the Purdue Research Foundation, containing a range of example security policy sets.

Principles behind the W3C Platform for Privacy Preferences initiative.

If your company doesn't have written security policies, it's time it did, and Mark Edwards has some resources to help.

How to create and publish your company's platform for privacy performance policy, a W3C initiative, in 6 steps.

Funding opportunities in the Office of the Assistant Secretary for Planning & Evaluation in the Department Health & Human Services.

Knowing how and what to protect and what controls to put in place is difficult. It takes security management, including planning, policy development and the design of procedures.

The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community.

This paper is intended to address the importance of having a written and enforceable Information Technology (IT) security policy, and to provide an overview of the necessary components of an effective policy.