SECURITY POLICY for PIXEL, INC.

Table of Contents
Abstract 3
Purpose 3
Roles and Responsibilities 4
The policy statement 4
Policies specific to Roles 5
Chief Security Officer (CSO) 5
Chief Information Officer (CIO) 5
Pixel Inc. employees 6
Pixel Inc. Business partners 6
Pixel Clients 6
Risk Management 7
Policy 9
Sensitivity 10
General 11
Network Access 11
Network Equipment 14
Desktop Policy 15
Messaging Policy 16
Server Policy 16
Backup 17
Physical Security 18
Enforcement 20
Appendix 22
References 23

Abstract This paper describes the security policy of a fictitious company called Pixel Inc. The Pixel Inc. is a small business with nearly 100 employees with business focus on multi-media. Due to the nature of business, the company uses varying operating systems such as windows, Mac and Linux systems wired over a gigabit Ethernet networking. The security policy focuses on the securing intellectual property on storage and transportation. The usage policies are also devised for desktops and devices.
Purpose

The information security is crucial for Pixel Inc. to secure its information technology assets. The security is expected to provide protection from unauthorized access of its intellectual properties, system assets, network equipment’s, customer data and business system information. The policy described here is for implementing security practices across Pixel Inc. in everyday use of the information technology assets. Scope The scope of this security policy is limited to securing information technology assets and the physical locations where such systems are used and hosted. The policy considers the threat from both internal and external to the organization; and recommends policies relevant to the threats that such type of business are vulnerable to. The content here is limited to listing