Previous Topic: Preparing an Implementation PlanNext Topic: Deciding How to Protect


Getting Management Commitment

A management decision to install CA ControlMinder is not enough to guarantee adequate security at your site. A successful security project requires active management involvement. Management must decide on security policy procedures, allocated security function resources, and user accountability. Without such management support, security procedures fall into misuse and become more of an administrative chore than a viable protection scheme. This situation can result in a false sense of security and can lead to serious security exposures.

The security administrator works with management to prepare a clear, inclusive security policy statement. This statement includes the following items:

The resulting security policy helps to ensure a CA ControlMinder implementation plan that is both realistic and consistent with the installation security policy.