Information security guidelines for ABC Hospital Research Paper - 1

Information security guidelines for ABC Hospital - Research Paper Example However, information security policy is customized by company to company and department to department. Different factor that may influence to tailor the policy includes organization size, dependence on information systems, regulatory compliance and information classification scheme. For addressing all issues related to information security via a single policy is not possible, however, to cover all aspects related to information security, a set of information security policy document focusing on different group of employees within the organization is more suitable. This paper will discuss different factors that must be taken in to account when constructing and maintaining an information security policy. However, there are many methods available for constructing an information security policy, the initial step before adopting any one of the methods is to identify the current maturity level of the policy construction process within the organization. The outputs will be either no informa tion security policy development process in place or there is an extensive policy development process exists. Information security training and awareness is initially evaluated, as the determination of training requirements for the organization is required on the initial basis. Likewise, the training and awareness program is initiated by conducting interviews with key stakeholders and business owners. These training and awareness sessions are focused on identifying security and training requirements. Moreover, type of awareness and trainings are also identified, as requirements for a hospital will differ as compare to a health insurance company. Furthermore, there is a requirement of measuring current maturity among employees of the hospital for making the training and awareness session more precise and focused. If the current awareness and training maturity is measured, considerations for further improvement are