Explain The Concept of EISP With Example

Uploaded by

An Enterprise Information Security Policy (EISP) establishes a company's philosophy and direction on security. It is written at the management level and explains employee roles and responsibilities for protecting systems and information. The EISP also integrates the company's security measures with its mission and objectives. For example, a hospital's EISP may focus on safeguarding patient data. The EISP covers protection of sensitive information, authorized use of information, access and usage policies, disclaimers for data damage, and addressing legal conflicts.

Copyright:

Available Formats

Download as DOCX, PDF, TXT or read online from Scribd

Explain The Concept of EISP With Example

Uploaded by

Abhishek Napit

0% found this document useful (0 votes)

339 views2 pages

Original Title

Information Security System

Copyright

Available Formats

DOCX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Download as DOCX, PDF, TXT or read online from Scribd

Download as docx, pdf, or txt

0% found this document useful (0 votes)

339 views2 pages

Explain The Concept of EISP With Example

Uploaded by

Abhishek Napit

Copyright:

Available Formats

Download as DOCX, PDF, TXT or read online from Scribd

Download as docx, pdf, or txt

Jump to Page

You are on page 1of 2

Search inside document

1. Explain the concept of EISP with example.

An Enterprise Information Security Policy sits atop the company's

security efforts. In fact, it details what a company's philosophy is on security
and helps to set the direction, scope, and tone for all of an organization's
security efforts. It is a management-level document; that means, it is most
likely written by the company's chief information officer or someone serving
in that capacity. The EISP, as it's known for short, explains what the
company believes about security, the different types of roles that exist in the
company's security arena (and the duties of each) and what responsibilities
all employees have for keeping the organization's systems and information
safe from intrusion. It can also be used as a roadmap for future security
program development by setting the tone for how the company treats
security matters. Unlike other security policies in an organization that must
be modified as new technologies present themselves, the EISP is typically
final once completed - with very few changes going forward. An EISP will
vary from one company to another to meet the purpose of the organization
itself. For example, a hospital that handles a lot of sensitive patient data in
electronic form may specify as one of its EISP goals to safeguard against
authorized access or accidental dissemination. In this way, it is possible to
integrate the mission and objectives of the organization into its EISP by
defining specific security measures that can enhance and further the
organization's purpose.
 Protection of Information: Information must be protected in a manner
commensurate with its sensitivity, value, and criticality
 Use of Information: Company X information must be used only for the
business purposes expressly authorized by management
 Information Handling, Access, and Usage: Information is a vital asset and all
accesses to, uses of, and processing of Company X information must be
consistent with policies and standards
 Data and Program Damage Disclaimers: Company X disclaims any
responsibility for loss or damage to data or software that results from its
efforts to protect the confidentiality, integrity, and availability of the
information handled by computers and communications systems
 Legal Conflicts: Company X information security policies were drafted to
meet or exceed the protections found in existing laws and regulations, and
any Company X information security policy believed to be in conflict with
existing laws or regulations must be promptly reported to Information
Security management

NIST Audit Checklist
Document9 pages
NIST Audit Checklist
Varinder
No ratings yet
Data Loss Prevention A Complete Guide - 2020 Edition
From Everand
Data Loss Prevention A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
BP Lubricants Achieves BIGS Success: Case Study
Document6 pages
BP Lubricants Achieves BIGS Success: Case Study
Arvind Hegde
No ratings yet
Titanic Data Analysis
Document11 pages
Titanic Data Analysis
Pooja Patnaik
No ratings yet
Business Intelligence Literature Review
Document22 pages
Business Intelligence Literature Review
Audrey Martin Dodson
75% (4)
International Standard: Financial Services - Key Management (Retail)
Document36 pages
International Standard: Financial Services - Key Management (Retail)
olol
No ratings yet
Intro To Data Management PDF
Document65 pages
Intro To Data Management PDF
neerajshukla246829
No ratings yet
Cache Object Script
Document228 pages
Cache Object Script
Ajay Vikram Singh
No ratings yet
Association Rule Mining Lesson PDF
Document9 pages
Association Rule Mining Lesson PDF
Tushar Bhonsle
No ratings yet
MRA - Big Data Analytics - Its Impact On Changing Trends in Retail Industry
Document4 pages
MRA - Big Data Analytics - Its Impact On Changing Trends in Retail Industry
Son pham
No ratings yet
IT Infrastructure & Emerging Technologies
Document6 pages
IT Infrastructure & Emerging Technologies
Anyun Sharma
No ratings yet
Measuring Human and Vader Performance On Sentiment Analysis
Document5 pages
Measuring Human and Vader Performance On Sentiment Analysis
journal
100% (1)
Data Mining Techniques For Weather Prediction A Review
Document6 pages
Data Mining Techniques For Weather Prediction A Review
Editor IJRITCC
No ratings yet
How To Sell A Data Warehouse To Upper Management Checklist
Document6 pages
How To Sell A Data Warehouse To Upper Management Checklist
lovegal
No ratings yet
Data Science Techniques, Tools and Predictions: March 2020
Document9 pages
Data Science Techniques, Tools and Predictions: March 2020
samir
No ratings yet
Unit1-Network Security
Document45 pages
Unit1-Network Security
revilo30
No ratings yet
Chapter 8-Structuring System Data Requirements
Document51 pages
Chapter 8-Structuring System Data Requirements
Kat Yusha
No ratings yet
Information System Audit and Controls Lesson Slides
Document26 pages
Information System Audit and Controls Lesson Slides
Sadura Akinrinwa
No ratings yet
Big Data
Document21 pages
Big Data
sonal
No ratings yet
Business Intelligence
Document14 pages
Business Intelligence
Bruna Morais
No ratings yet
Business Intelligence
Document13 pages
Business Intelligence
y2j_incubus
50% (2)
Seminar
Document16 pages
Seminar
Arjun Naidu
No ratings yet
Intelligent Decision Support Systems - A Framework
Document9 pages
Intelligent Decision Support Systems - A Framework
Alexander Decker
No ratings yet
Course Syllabus Course Text Books Reference Books What Is Data Warehouse ?
Document15 pages
Course Syllabus Course Text Books Reference Books What Is Data Warehouse ?
Rajan Raj
No ratings yet
Data Warehousing
Document15 pages
Data Warehousing
Kunal26_Mohapatra
No ratings yet
PII A Complete Guide
From Everand
PII A Complete Guide
Gerardus Blokdyk
No ratings yet
Ccs345-Ethics and Ai Lab Manual
Document24 pages
Ccs345-Ethics and Ai Lab Manual
monishar9895
No ratings yet
Test 8
Document6 pages
Test 8
Robert Kegara
No ratings yet
Prediction of House Prices Using Machine Learning
Document8 pages
Prediction of House Prices Using Machine Learning
IJRASETPublications
No ratings yet
How To Train AI Models Step by Step Effectively
Document8 pages
How To Train AI Models Step by Step Effectively
tedywise51
No ratings yet
IS - Chapter 1, Overview of Information System
Document34 pages
IS - Chapter 1, Overview of Information System
ibsaasheka
No ratings yet
Chapter 11 Managers and Decision Making
Document3 pages
Chapter 11 Managers and Decision Making
Ven Yukping Chow
No ratings yet
DA Project Report
Document17 pages
DA Project Report
kirti reddy
No ratings yet
Management Information System (Mis) : 1. Technical Approach
Document4 pages
Management Information System (Mis) : 1. Technical Approach
Prashanth Bn
No ratings yet
ICT For African Development
Document370 pages
ICT For African Development
UNITED NATIONS GLOBAL ALLIANCE FOR ICT AND DEVELOPMENT
No ratings yet
Artificial Intelligence
Document28 pages
Artificial Intelligence
جلال عواد كاظم جودة
No ratings yet
Artificial Intelligence: Vishwakarma Institute of Information Technology, Pune
Document37 pages
Artificial Intelligence: Vishwakarma Institute of Information Technology, Pune
Harshal Patil
100% (1)
Class Note On MIS in MS Word
Document47 pages
Class Note On MIS in MS Word
Raj Kumar Thakur
100% (2)
Big Data
Document30 pages
Big Data
sairushith
No ratings yet
The Next Frontier For Innovation, Competition and Productivity
Document23 pages
The Next Frontier For Innovation, Competition and Productivity
ravi kumar
No ratings yet
Data Management Scope and Strategies: K.L. Sender and J.L. Pappas
Document41 pages
Data Management Scope and Strategies: K.L. Sender and J.L. Pappas
peterche
No ratings yet
Software Engineering Tutorial
Document17 pages
Software Engineering Tutorial
Un Int
No ratings yet
Cognitive Technology
Document39 pages
Cognitive Technology
arisesphoenix08
100% (1)
How Can Analytics and Data Science Leverage Machine Learning in Future - Swaraj - MDI
Document7 pages
How Can Analytics and Data Science Leverage Machine Learning in Future - Swaraj - MDI
Swaraj Dhar
No ratings yet
Presentation On ERP
Document26 pages
Presentation On ERP
Bharat Ahir
67% (3)
IT Security Policy Template Security Response Plan OSIBeyond
Document3 pages
IT Security Policy Template Security Response Plan OSIBeyond
Sanda Nechifor
No ratings yet
COBIT Framework
Document9 pages
COBIT Framework
Hidayat Kampai
No ratings yet
Data Warehousing and Data Mining
Document2 pages
Data Warehousing and Data Mining
api-241651929
No ratings yet
Machine Learning For Dummies
Document32 pages
Machine Learning For Dummies
ScribdTranslations
100% (1)
IT Management Process Maturity Complete Self-Assessment Guide
From Everand
IT Management Process Maturity Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet
Big Data in Practice
Document6 pages
Big Data in Practice
zio_nano
No ratings yet
Big Data Management
Document25 pages
Big Data Management
SHARMAINE CORPUZ MIRANDA
No ratings yet
Big Data Analytics
Document3 pages
Big Data Analytics
journal
100% (1)
Session 1 CISB594 Business Intelligence Introduction
Document30 pages
Session 1 CISB594 Business Intelligence Introduction
Lovis NK
No ratings yet
What Is Artificial Intelligence (AI)
Document7 pages
What Is Artificial Intelligence (AI)
Shahma Salam
100% (1)
POL BigDataStatisticsJune2014
Document27 pages
POL BigDataStatisticsJune2014
HHenry1860
No ratings yet
Data Science and Analytics
Document3 pages
Data Science and Analytics
arbaz khan
No ratings yet
Beyond Bans:: Science & Technology Innovation Program
Document12 pages
Beyond Bans:: Science & Technology Innovation Program
The Wilson Center
No ratings yet
Personal, Legal, Ethical, and Organizational Issues of Information Systems
Document38 pages
Personal, Legal, Ethical, and Organizational Issues of Information Systems
Yakup
No ratings yet
Final Report Data Mining
Document60 pages
Final Report Data Mining
hamzaabidar
No ratings yet
E-Governance Case Study in China-Beijing Business E-Park
Document4 pages
E-Governance Case Study in China-Beijing Business E-Park
akyadav123
No ratings yet
Sentiment Analysis A Complete Guide - 2019 Edition
From Everand
Sentiment Analysis A Complete Guide - 2019 Edition
Gerardus Blokdyk
No ratings yet
Ethics and Professional Conducts4
Document2 pages
Ethics and Professional Conducts4
Abhishek Napit
No ratings yet
Ethics and Professional Conducts6
Document3 pages
Ethics and Professional Conducts6
Abhishek Napit
No ratings yet
Ethics and Professional Conducts5
Document2 pages
Ethics and Professional Conducts5
Abhishek Napit
No ratings yet
Ethics and Professional Conducts7
Document2 pages
Ethics and Professional Conducts7
Abhishek Napit
No ratings yet
The Overall Planning For Unexpected Events Is Contingency Planning (CP), Explain THREE (3) Components of Contingency Planning With Action Plan
Document2 pages
The Overall Planning For Unexpected Events Is Contingency Planning (CP), Explain THREE (3) Components of Contingency Planning With Action Plan
Abhishek Napit
No ratings yet
Ethics and Professional Conducts3
Document1 page
Ethics and Professional Conducts3
Abhishek Napit
No ratings yet
20 System Programming - Sep 2020 (CBCS - F+R 2016-17 and Onwards)
Document2 pages
20 System Programming - Sep 2020 (CBCS - F+R 2016-17 and Onwards)
MAHESH Kashyap
No ratings yet
Cover letterCAAPAKISTAN Assistant Directer Vigilance
Document1 page
Cover letterCAAPAKISTAN Assistant Directer Vigilance
Jaweria Jaweria
No ratings yet
CHAPTER 04: Peripherals Interfacing With 8086 and Applications
Document17 pages
CHAPTER 04: Peripherals Interfacing With 8086 and Applications
Anikhet Mulky
No ratings yet
SAP IDs & Project Names
Document30 pages
SAP IDs & Project Names
A8130
No ratings yet
AIS Module 8 - 11
Document30 pages
AIS Module 8 - 11
Maricar Pineda
No ratings yet
Ida X86emu x86 Emulator Plugin For IDA Pro: Chris Eagle
Document29 pages
Ida X86emu x86 Emulator Plugin For IDA Pro: Chris Eagle
amin jahromi
No ratings yet
Lab 4 - File Server Final
Document9 pages
Lab 4 - File Server Final
Alkhalil Alsarhani
No ratings yet
Navigating The Intersection of AI and Cybersecurity in India
Document10 pages
Navigating The Intersection of AI and Cybersecurity in India
adhityan0005
No ratings yet
Biometrically Secured ATM Vigilance System
Document4 pages
Biometrically Secured ATM Vigilance System
Soundarya
No ratings yet
Horizon DW CLI Commands
Document3 pages
Horizon DW CLI Commands
Zain Masood
No ratings yet
Vocabulary Task
Document1 page
Vocabulary Task
ANGELA VALERIA ESTRADA MELO
No ratings yet
2011-05 (S) - Injector Coefficient Database
Document4 pages
2011-05 (S) - Injector Coefficient Database
PAVLOS
No ratings yet
Answer Scheme
Document4 pages
Answer Scheme
Irfan Azman
No ratings yet
CS427I1808A1 Web
Document3 pages
CS427I1808A1 Web
Filipe Brandao
No ratings yet
Pythonday1 211004 234002
Document12 pages
Pythonday1 211004 234002
Mohd waseem
No ratings yet
Chapter TWO - Process Description and Control
Document29 pages
Chapter TWO - Process Description and Control
Sarmila Mahendran
No ratings yet
SECPDS - 005 - EN-2001 - Arbor Sightline
Document3 pages
SECPDS - 005 - EN-2001 - Arbor Sightline
MostafaEl-sayed
No ratings yet
EDU CC 70255 Ch03 Takeaway
Document10 pages
EDU CC 70255 Ch03 Takeaway
MES Betise
No ratings yet
FSD S4 STR I STR 001 Stock Transfer Interface
Document13 pages
FSD S4 STR I STR 001 Stock Transfer Interface
rohit sh
No ratings yet
Report Writing On Realization of All Basic Gates Using Nand Gates
Document4 pages
Report Writing On Realization of All Basic Gates Using Nand Gates
Priyanka Manna
No ratings yet
Standard Module 1 (Garbin) - 2nd REVISION
Document19 pages
Standard Module 1 (Garbin) - 2nd REVISION
Paolo Garbin
No ratings yet
Active Directory Planning Worksheets
Document13 pages
Active Directory Planning Worksheets
mailforasif
No ratings yet
Cyber Crime - "Is The Internet The New Wild Wild West?"
Document26 pages
Cyber Crime - "Is The Internet The New Wild Wild West?"
m_ghazi
No ratings yet
About Us - Hackveda Limited
Document2 pages
About Us - Hackveda Limited
19BMA111 GOKUL
No ratings yet
SMTP Log Codes
Document9 pages
SMTP Log Codes
Sajith Bc
No ratings yet
137 - CS8792, CS6701 Cryptography and Network Security - 2 Marks With Answers 2
Document17 pages
137 - CS8792, CS6701 Cryptography and Network Security - 2 Marks With Answers 2
Lionel Bharath Razer
No ratings yet
Zafar-Ali RESUME
Document1 page
Zafar-Ali RESUME
Wajid Ali
No ratings yet
Acs580Mv: Notes For Drivestartup License
Document4 pages
Acs580Mv: Notes For Drivestartup License
Sanu Yo
No ratings yet