Protecting the confidentiality, integrity and availability of customer records and other confidential information is critical to a company’s success and may be required by various federal, state and local privacy laws under legislation.

Network control policies address a set of guidelines, policies and procedures that are developed based upon the analysis of degrees of risk associated with systems or services. When implementing new systems or services, risks should be identified and measured, and policies and procedures established to mitigate known risks. These policies and procedures address the controls and monitoring measures implemented based upon exposure to transactional, operational, financial, reputation, and legal risks.

OurTech can assist with development of appropriate Information Security Policies based upon industry “Best Practices” and provide on-site training where appropriate. We design policies to differentiate between organization, department, and end-user roles and responsibilities. More importantly, we can assist clients with the implementation of network applications to handle enforcement and monitoring of instituted network control policies. We can help you develop the following policies:

Electronic Mail Access and Use Policy
Record Retention and Disclosure Policy
Internet Access and Use Policy
Remote Access Control Policy
Data Backup and Storage Policy
Virus Protection Policy
Physical and Logical Access Control Policies
Change Control Policy
Workstation and Server Hardening Policies
Personnel Security Policy
Customer Service and Online Privacy
Critical Data Policy
Incident and Network Intrusion Policy