Auditing Policy, Standards, and Procedures
In addition to checking the status of server configuration and policy compliance, you should audit policy, standards, and procedures to ensure that they are up-to-date, meet needs, and are correct for the way your organization operates today. In many organizations, policy addresses security in a broad way, leaving others to define the technology and controls to be used to implement a policy. In these organizations, standards are written that state which technologies will be used and procedures to define how they will be configured. In other organizations, a policy may be specific as to technology and may even state procedural implementation steps. Other organizations may implement security policy using ...
Get Windows Server 2003 Security: A Technical Reference now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
