RSS News Feed Feed Description


Patriot Act Security BundlePatriot Act Security Bundle

Security Manual Template - Disaster Recovery Plan Template -
Sensitive Information Policy
Internet, E-Mail & Electronic Communications Policy
Internet and PC Workstation Policies and Procedures
3 Key Job Descriptions - Chief Security Officer (CSO)
Manager Internet - Intranet and Internet - Intranet Administrator
DiskMonitor Utility Program

 

 

The Patriot Act Security Bundle has been updated to reflect all of the legislation that has be enacted by the United States Congress.  You can purchase the entire bundle by clicking on the order button above or individual components by clicking on the images below.

Security Manual Template

Business & IT Impact QuestionnaireThreat & Vulnerability Assessment ToolThe Security Manual Template includes two of our most popular and successful tools - the Business & IT Impact Analysis Questionnaire and the Threat and Vulnerability Assessment Tool.
  
The Security Manual Template is over 200 pages and includes everything needed to customize the Internet and Information Technology Security Manual to fit your specific requirement.  The electronic document includes proven written text and examples for the following major sections for your security plan:

  • Security Manual Introduction

  • Risk Analysis

  • Staff Member Roles

  • Physical Security 

  • Facility Design, Construction and Operational Considerations

  • Media and Documentation

  • Data and Software Security

  • Network Security

  • Internet and Information Technology contingency Planning

  • Insurance

  • Outsourced Services

  • Waiver Procedures

  • Incident Reporting Procedures

  • Access Control Guidelines

  • Glossary

  • Sample Forms

View The Table of Contents And A Few Pages

Sensitive Information Policy

Policy defines how to treat Credit Card, Social Security, Employee, and Customer Data.  The policy is 15 pages in length. This policy complies with Sarbanes Oxley Section 404.

 

This policy applies to the entire enterprise, its vendors, its suppliers (including outsourcers) and co-location providers and facilities regardless of the methods used to store and retrieve sensitive information (e.g. online processing, outsourced to a third party, Internet, Intranet or swipe terminals).
 

View The Table of Contents And A Few Pages

 

Disaster Recovery Plan TemplateDisaster Recovery Plan (DRP)
This Disaster Recovery Plan (DRP) can be used as a template for any enterprise.   DRP is sent to you via e-mail in WORD and/or PDF format. Included is a 13 page Business Impact Questionnaire as well as a 3 page Job Description for the Disaster Recovery Manager.:

 

  • Plan Introduction

  • Business Impact Analysis

  • DRP Organization Responsibilities

  • Backup Strategy

  • Recovery Strategy 

  • Disaster Recovery Procedures Check List

  • Plan Administration Process

  • 13 page Risk Assessment - Business Impact Questionnaire

  • 3 page Job Description for Disaster Recovery Manager

View a the Table of Contents and some sample pages [Adobe PDF]
 

Internet and PC Workstation Policies & Procedures HandiGuideInternet and PC Workstation Policies and Procedures HandiGuide The use of the Internet and PCs is exploding.  Terms such as cyberspace, information highway and the Internet are now part of everyone's vocabulary.  New operating systems, complex networks, inter-company e-mail and work at home programs have made the management of most enterprises understand the total effort required to support PCs, LANs and workstations.   With this in mind, we've developed the Internet and PC Workstation Policies and Procedures HandiGuide® to assist you in managing your environment with valuable guidelines, rules, forms, and standards that many enterprises have already adopted.  Some of the chapter include:

  • Security Guidelines
  • Back-Up and Recovery
  • Service Requests
  • Electronic
  • Communication
  • Internet
  • Security Guidelines
  • Facility Requirements
  • Local Area Networks
  • Business Resumption
  • Plan
  • Applications Development Standards
  • Viruses
  • Justification, Acquisition & Support
  • Manager's PC & LAN
  • Responsibilities
  • Change Control
  • How to get Technical Support
  • Full Index

Internet, Email & Electronic Communication Policy - Internet, Email & Electronic Communication Policy sections include appropriate use of equipment, Internet access, Intellectual Property, e-mail, e-mail retention period, data security and ownership of information. This has been updated to reflect NABSTER, music and video file capture and use.

 

3 Key Job Descriptions:

  • Chief Security Officer (CSO)

  • Manager Internet and Intranet

  • Internet - Intranet Administrator

DiskMonitor

Network Administrators,  DRP Coordinators, and Security Managers - can use DiskMonitor (DSM) to view drive and folder usage. Local drives as well as network shares are supported. UNC pathing and Drive$ shares are supported as well.

View The Features and Functions

 

 

 

 

 

Site Map

Get General Accounting
Office Report on
Social Security Number Use  Download

Firefox is not the only competitor attacking IE -

Browser Market ShareAs Firefox was on the way to vanquishing Internet Explorer, its browser's success opened the door for other competitors.  Even as Internet Explorer's market share has slipped Firefox programmers, face a surprising question: should they be more worried about the programmers in Redmond, Wash., or about those working on Apple's Safari, Google's Chrome, and Opera?

Firefox has gained market share, according to Net Applications' statistics since July 2008, and Firefox backer Mozilla doubtless hopes for more gains with Tuesday's release of Firefox 3.5. But Apple's Safari and Google's Chrome each gained 2 percentage points, to 8.4 percent and 1.8 percent, respectively, indicating a growing appetite for alternatives to Internet Explorer that's not completely met by Firefox. Opera stayed flat at about 0.7 percent.

Firefox is not the only game in town, and Firefox fans' easy us-versus-them polarization is transforming into a more complicated situation.

Having other IE challengers helps legitimize Firefox, because the idea of straying from the IE fold appears more legitimate, but the alternatives also collect some of the new users venturing farther afield.

more info

XP Lives On -

Microsoft reletents and extends the life of Windows XP -- Again.  Microsoft said the it would extend the aged operating system's lifespan in the post-Windows 7 world to as late as April 2011.

A Microsoft spokesperson said,"Windows 7 Professional and Ultimate customers will have the option to downgrade to Windows XP Professional from PCs that ship within 18 months following the general availability of Windows 7 or until the release of a Windows 7 service pack, whichever is sooner, and if a service pack is developed."

more info

DRP - Business Continuity Template Update Service Is A Must -

Disaster PlanningThe Disaster Recovery / Business Continuity Template version 5.4 has just been released.  Janco contiues to update its templates to meet the ever changing requirements of the business environment.

Janco provides and update service for all of its templates which guarantees its clients have the all of the information they need to meet mandated requirements.

With this new version a fully indexed PDF copy of the template is now provided in addition to the two versions of WORD (2003 and 2007). 

 The updates to the template included:

  • Added Pandemic Coordinator job description
  • Added Business Pandemic Planning Checklist
  • Updated organization chart to include Pandemic Coordinator
  • Updated backup and backup retention section
  • Updated style sheet to be CSS Style sheet format
  • Added Disaster Recovery Business Continuity General Distribution Information 
    • What to do after an explosion / terrorist attack
    • How to clean up after a disaster
  • Defined generic metrics for DR/BC success
  • Business & IT Impact Analysis Questionnaire Updated
  • Updated references to DRP card
  • Updated formatting to meet WORD 2007 requirements

The version history for updates to template can be seen at http://www.e-janco.com/drpversion.htm and the full Table of Contents with sample pages can be downloaded at http://www.e-janco.com/Register_drp.asp .

more info

Java with SQL Injection Attacks Impacts Many Web Sites -

Security Policies and Procedures and Audit Program

Hackers are obtaining FTP credentials for poorly designed wed sites, giving them access to the inner workings of the site. The hackers are using automated tools to seek out vulnerable Web sites.

As many as 40,000 Web sites have been hacked to redirect unwitting victims to another Web site that tries to infect PCs with malicious software. Th sites have been hacked with  JavaScript code that directs people to a fake Google Analytics Web site.

Those Web sites have likely been hacked via a SQL injection attack.

This underscores the success hackers have at hosting dangerous code on poorly secured Web sites.

more info

Unemployment To Remain High According to US Govenment Forecasts -

(Reuters) - Americans could face higher unemployment for some time to come, President Barack Obama warned on Wednesday, underscoring the tough challenges the country faces even as the economy shows signs of stabilizing.

Obama, speaking to a meeting of his 16-member Economic Recovery Advisory Board headed by former Federal Reserve chief Paul Volcker, said he was encouraged by "signs of normalcy" in the financial markets and hints the economy was steadying -- though he remained concerned in the long run.

"One of the things that we're wrestling is how do we deal with job creation and employment," Obama said.

"The concern that we have is that even in a stabilizing situation there is the prospect of higher unemployment for some time to come," Obama said, noting the decline of U.S. manufacturing and changes in the global economic picture.

The U.S. unemployment rate rose to 8.9 percent in April, the highest since 1983, following months of heavy job losses stemming from the global financial crisis.

There have been some signs the worst of the U.S. recession could be over, and Treasury Secretary Timothy Geithner told a Senate panel on Wednesday the U.S. financial system was "starting to heal" after a period of severe trauma.

But continued high unemployment levels could be risky for Obama as he seeks to maintain political momentum to enact major initiatives on climate change and U.S. healthcare and carry into next year's mid-term congressional elections.

more info

Windows 7 beats Vista - But Cost May be too Great for Many Enterprises. -

Windows 7 Professional is expected to be more expensive than Windows Vista Business, the version that Professional is replacing.  If that is the case, Windows 7 pricing is potentially an obstacle to Windows 7 adoption for many enterprises.

Based on initial testing Windows 7 beats Vista.  Janco executives stated, "One thing that will influence adoption of Windows 7 and cause customers to pause, it's that generally the ASPs (average selling price) of the operating systems is higher than for Vista and XP."

The Janco CEO added, "In tough economic times, we think it is naive to believe that you can increase your prices on average and then still see a stronger swell than if you held prices flat or even lowered them. I can tell you that the licensing tiers at retail are more expensive than they are for Vista."

more info

AT&T Big Winner With SmartPhones -

According to Comscore, twice as many smartphone users have picked AT&T Inc. over any other wireless U.S. carrier, owing to the carrier's array of smartphones, its fast wireless network and its 20,000 hot spots, according to research AT&T Inc. released today.

The popularity of text messaging and mobile data applications, including those for social networking, have led customers in record numbers to upgrade to smartphones and other phones with full QWERTY keyboards, which AT&T calls "integrated devices. Today, nearly 32% of AT&T subscribers who purchase service on a monthly plan use an integrated device, the company said. Overall, AT&T serves 78 million wireless customers.

AT&T plans to use the findings to bolster an advertising campaign it is about to launch.

more info

Everyone Wants a Monopoly -

Apple iPhone

The original deal for the Apple iPhone gave AT&T the exclusive carrier monopoly for the iPhone until 2008, at which time Apple would be allowed to start selling the wildly popular smartphone on other carriers. However, the companies met last August and decided to extend that partnership through the end of this year.

Now, AT&T wants to extend that deal another two years. AT&T's chief executive is talking with Apple to keep that deal alive until 2011, according to a report in The Wall Street Journal.

Apple has sold more than 17 million iPhones since its debut less than two years ago, and the carrier added 4.3 million iPhone subscribers in the second half of 2008--40 percent of whom were new to AT&T.

Apple is making out pretty well with its AT&T partnership; the carrier reportedly offered Apple a $300 subsidy on each iPhone sold. Nevertheless, if AT&T was willing to go that far, Apple stands to clean up by negotiating contracts with other carriers.

more info

Outsourcing to Cost More IT Jobs -

Outsourcing will continue to be a factor in the loss of IT jobs within North America if one is to believe the study released by Capgemini, Unicredit and Efma.  The study reports more than one-third of banks surveyed considered the optimization of their IT on a geographic basis as critical with a rise from 6 to 31 percent of banks strongly considering developing international IT systems in the next five years. Other levers for IT optimization are synergies with other factors (26 percent), IT outsourcing (23 percent) and IT off-shoring (16 percent).

more info

Remote Branch Offices are a Disaster Recovery Business Continuity Risk -

Distributed data at remote and branch offices (ROBOs) continues to grow substantially year after year. Leaving this data unprotected or inadequately protected poses, serious business risks for organizations. Protection approaches require careful consideration as factors such as technical complexity, capital and operational costs, and expertise of personnel must be taken into account.

Local disk-based data protection strategies improve backup efficiency and reliability over tape-based ones. Consolidation of edge data to the core data center may introduce further efficiencies. Data de-duplication can drive both backup-to-disk and consolidation adoption.

more info

 

 

©  2001 - 2009 Janco Associates, Inc. - ALL RIGHTS RESERVED --  Revised: 06/16/09.