Please enable JavaScript.
Coggle requires JavaScript to display documents.
SECURITY POLICIES - Used by PHPS - Coggle Diagram
SECURITY POLICIES - Used by PHPS
Staff access rights to information
PHPS needs a clear policy defining who has access to what information
This policy should be based on the principle of least privilege, granting only the necessary access for each role
Disaster Recovery
PHPS need to have comprehensive data recovery plan
ensures business continuity
regular off site back ups
regular onsite back ups
procedures for restoring data
practice restoring our data
Responsibility to staff for security of information
A policy should outline the security responsibilities of all staff members
Password management
Data handling procedures
Reporting security incidents
Information security risk assessment
Regular risk assessments are essential to identify potential security vulnerabilities and threats.
Technical vulnerabilities
Human error
Physical security.
Effectiveness of security measures
PHPS should regularly review and evaluate the effectiveness of its security measures
security audits
Penetration testing
Training of staff to handle information
Regular security awareness training is crucial to educate staff about security best practices
Password security
Phishing awareness
Data handling procedures
How to report security concerns