SANS Audit Policy
-
Upload
mirfanaslam -
Category
Documents
-
view
53 -
download
0
description
Transcript of SANS Audit Policy
-
5/26/2018 SANS Audit Policy
1/3
Server Audit Policy
Created by or for the SANS Institute. Feel free to modify or use for your organization. If you have a
policy to contribute, please send e-mail to stephensans.edu
1.0 Purpose
The purpose of this policy is to ensure all servers deployed at are configured according
to the security policies. Servers deployed at shall be audited at least
annually and as prescribed by applicable regulatory compliance.
Audits may be conducted to:
Ensure integrity confidentiality and availability of information and resources Ensure conformance to security policies
2.0 Scope
This policy covers all servers o!ned or operated by . This policy also covers any server
present on premises but !hich may not be o!ned or operated by .
3.0 Policy
hereby provides its consent to allo!
-
5/26/2018 SANS Audit Policy
2/3
3.4 !"ners#ip of Audit Report.All results and findings generated by the shall never use access re)uired to perform server audits for any other
purpose. Any employee found to have violated this policy may be sub1ect to disciplinary action up to and
including termination of employment.
&.0 Revision 'istory
+riginal: ,ussell Euban(s -ebruary /0
-
5/26/2018 SANS Audit Policy
3/3