Policy Construction Kit for Information Security Now Available

Sausalito, California (25 January 1994)--Today Baseline Software announced
the release of the 1994 edition of its policy construction kit called
Information Security Policies Made Easy. Containing more than 600
already-written information security policies, this all-in-one package
consists of a 262-page printed reference manual accompanied by floppy-disk
files that allow organizations to do key word searches, "cut-and-paste"
operations, and otherwise rapidly tailor these policies to their own
unique needs.

Originally introduced in 1991, the 1994 update of this "cookbook" reference
has been expanded over 100% since the last edition. Each of the policies
is now accompanied by commentary describing its objectives, variations,
intended audience, and relevant computing environment. Several new
sections dealing with contemporary topics like electronic mail and
telephone systems have been added. Extensive cross-references and indexes
have also been included. 1-he book comes with detailed instructions on the
policy writing and approval process, a comprehensive list of information
security standards, a list of policy-related references, a list of PC-LAN
policies, and a brief exemplary set of policies.

Baseline's policy construction kit can be employed to develop a wide
variety of information security materials such as: information security
manuals, computer operations documentation, system development procedures,
contingency plans, user training seminars, outsourcing agreements, and
requests for proposals. Applicable to organizations throughout the world,
the policy construction kit provides policies covering a broad range of
topics including: network security, contingency planning, computer
viruses, system privilege assignment, software development, intellectual
property rights, password management, control measure selection, user
awareness, privacy, and more.

The intention of this "how-to" guide is to clearly describe the essential
ideas in the complex information security field, thereby allowing people
without extensive security experience to develop effective policies.
Because the construction kit includes everything needed to compile
policies, and because the writing work has already been done, this product
can be used to quickly improve information security with a minimal
investment. The guide can also be used to answer the concerns of auditors
and reduce the likelihood of lawsuits. Policy development efforts
typically take weeks or months of consulting time. With Baseline
Software's policy construction kit, both the required effort and the
elapsed time are abbreviated.

The policy construction kit was written by noted information security
consultant and researcher Charles Cresson Wood. The referenced policies
were derived from his information security work with over 85
organizations, including Fortune 500 companies and government agencies.
Working exclusively in the information security field for the last 15
years, Mr. Wood's consulting projects have taken him to Australia,
Austria, Belgium, Brazil, Canada, England, Finland, France, Holland,
Ireland, Italy, Norway, Portugal, Saudi Arabia, South Africa, and Sweden.
He serves as the North American Editor for two international information
security technical journals and a monthly columnist for a third. He has
coauthored three computer security software packages, and published over
100 information security articles and two other books.

"Policies are the primary building blocks for every information security
effort," according to Mr. Wood. "In order to be successful with
information security," he says, "every organization must have a set of
policies that establishes both direction and management support." Many
other sources substantiate the importance of clearly-defined information
security policies. The National Research Council, in its recent book
entitled Computers at Risk, wrote that "A major conclusion of this report
is that the lack of a clear articulation of security policy for general
computing is a major impediment to improved security in computer
systems."

An organization-wide license to use Information Security Policies Made Easy
can be purchased for $495. This includes a printed hardcopy reference,
ASCII flat files, and files formatted with the most popular word
processing packages (IBM-PC or MAC). Baseline Software provides
consulting, software, and publications for organizations seeking to
quickly and efficiently upgrade their information security. Baseline can
be reached at: P.O. Box 1219, Sausalito, California, 94966 USA; phone
415-332-7763 (in the USA 800-829-9955) or fax 415-332-8032.

 ============================================================
 From the  'New Product Information'  Electronic News Service
 ============================================================
 This information was processed from data provided by the
 above mentioned company. For additional details, contact 
 the company at the address or telephone number indicated.
 OmniPage Pro is now used for converting all printed input! 
 ============================================================
 All submissions for this service should be addressed to:
 BAKER ENTERPRISES,  20 Ferro Dr,  Sewell, NJ  08080  U.S.A.
 Email: RBakerPC (AOL/Delphi), rbakerpc@delphi.com (Internet)
 ============================================================
