Corporate Security Policy
   The corporate security policy is a formal statement that 
   specifies a set of rules that the users must follow when
   gaining access to corporate networks. For a security policy
   to succeed it must follow these guidelines :

  
Management must support the policy
  
The policy must be technically feasible
  
The policy must be implemented globally throughout the
company.
  
The policy must clearly define responsibilities for users,
administrators and management.
  
The policy must be flexible to adapt to changing technologies
and company goals
  
The policy must be understandable
  
The policy must be widely distributed
  
The Policy must be enforceable
  
The policy must provide sanctions for users violating the
policies.
  
The policy must contain a response plan for when security
breaches are exposed.

Benefits of a Written Policy