You have just been hired as the Security Manager of a medium- sized Financial Services company employing 250 people in New Hampshire, and have been asked to write two new security policies for this company. The first one is an e-mail policy for employees concentrating on personal use of company resources. The second policy is that of WIFI and Internet use within the company.
There are many resources available on the web so researching these topics and policies should be easy. The most difficult part of this exercise will be determining how strict or how lenient you want to make these policies for this particular company.
Project Plan
You are asked to create two separate policies on use of EMAIL and a WIFI/INTERNET USE within the company. Be specific in your terms and conditions of use. Consider these items to be included in your policies (as applicable).
1. Overview
2. Purpose
3. Scope
4. Policy
5. Policy Compliance
6. Related Standards, Policies and Processes
7. Definitions and Terms

Outline/Overview - At present, email is truly outstanding, simple, and well known correspondence medium which interfaces workers, clients, and different partners of the organization. Because of the improvement of the innovation, the aggressors are attempting to utilize email for doing assaults which are driving security dangers inside the organization. Henceforth, it is significant for all representatives to comprehend the best possible utilization of email.

Reason/Purpose - The motivation behind the email strategy is to affirm the correct utilization of email address of the organization by the representatives.

Scope - The arrangement is covering the utilization of any email which is sent from an organization email address. It additionally applies to all related representatives, clients, and different partners who are working in the interest of the organization.

The email address of the organization ought to be utilized by workers just for business reason. Representatives are restricted to unlawfully utilize the organization email address.
The utilization of the email office must be steady with other security approaches of the organization. It gives the guarantee of the moral conduct inside the organization.
The "Information Protection Standards" must be utilized to make sure about the substance of the messages.
The organization must need to hold just clear email and keep up a record which stores the substance of the necessary messages.
The representatives ought to need to take care during opening any sort of dubious email which originates from unlawful location. They should need to answer to the security chief on the off chance that they got any sort of such email.
It isn't permitted to advance email to any outsider utilizing the organization email address.
The representatives are not permitted to utilize the organization email address for individual works and correspondence.

Policy Compliance - The security group of the organization will confirm the consistence of the approach utilizing suitable strategies, for example, stroll through, inward and outside reviews, business instrument reports, video checking, and input. The security group must need to educate and support any sort of special case to the arrangement ahead of time.

The Second Policy;

WIFI and Internet usage policy

Overview - The expanding utilization of web associations is bringing different sorts of security dangers for the organization. It turns into a significant asset of assault. A WIFI and Internet utilization strategy will control the unlawful and dishonest use of web assets inside the organization.

Purpose - The motivation behind WIFI and Internet use strategy is to affirm the best possible utilization of WIFI and Internet by the representatives inside the organization.

Scope - The arrangement applies to each web client including full-time representatives, low maintenance workers, colleagues, and so on of the organization.

Asset utilization – Employees will get consent and endorsement to get to WIFI and Internet if sensible business needs are found. As per the present place of employment obligations, the WIFI and Internet administrations will be conceded to the workers.
Permitted utilization – WIFI and Internet use is conceded to representatives just for supporting the business capacities and finishing some other important works. All web clients must need to follow the business standard during the utilization of assets.
Individual use – Employees can by and by utilize the WIFI and Internet assets by taking consent from the IT office. They should need to take care during individual use as the organization consistently screens their web use exercises.
Denied utilization – The representatives are not permitted to abuse the accessible database of the organization or unlawful web surfing through organization web assets.

Policy Compliance - The security group of the organization will confirm the consistence of the arrangement utilizing proper techniques, for example, stroll through, interior and outer reviews, business apparatus reports, video checking, and input.

Related Standards, Policies, and Processes - The organization must need to utilize "Web utilization inclusion affirmation structure" for taking the affirmation from every representative in the wake of perusing the arrangement. The affirmation structure guarantees that each representative appropriately read the arrangement and get it.

Affirmation

I peruse and comprehend the approach. I am concurred with the arrangement.

Worker name and signature________________________

IT administrator name and signature_______________________

Date_____________________