This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
wiki:policies:security_training [2022/02/14 19:37] katcow |
wiki:policies:security_training [2024/04/12 17:15] (current) kholub |
||
---|---|---|---|
Line 11: | Line 11: | ||
===== III. Security Awareness Training Policy ===== | ===== III. Security Awareness Training Policy ===== | ||
- | Nested Knowledge distributes security policies to all employees and contractors as part of their training. When policies are updated, we ensure that all employees have ready access to the most recent version. All employees with roles in incident response, data protection, or data recovery must sign off on the corresponding policy. We require all remote employees to review the remote access policy. | + | Nested Knowledge distributes security policies to all employees and contractors as part of their training. |
+ | |||
+ | When policies are updated, we ensure that all employees have ready access to the most recent version. All employees with roles in incident response, data protection, or data recovery must sign off on the corresponding policy. We require all remote employees to review the remote access policy. | ||
+ | |||
+ | ^Training^Delivered to| | ||
+ | |Acceptable Use of IT Resources|All| | ||
+ | |Incident Response|Incident Response Team| | ||
+ | |Cloud Security|Development Team| | ||
+ | |Information Security|All| | ||
+ | |Wireless Connection|All| | ||
+ | |Secure Development|Development Team| | ||
+ | |Disaster Recovery |Executive Team| | ||
+ | |Security Awareness|All| | ||
+ | |GDPR Compliance|All| | ||
+ | |Remote Access|All| | ||
==== Developer Training ==== | ==== Developer Training ==== | ||
Line 17: | Line 31: | ||
Developers are expected to be familiar with common vulnerabilities in web applications, | Developers are expected to be familiar with common vulnerabilities in web applications, | ||
- | * All developers perform an annual review of the [[https:// | + | * All developers perform an annual review of the [[https:// |
* Each developer annually completes a randomly selected test from the [[https:// | * Each developer annually completes a randomly selected test from the [[https:// | ||
* Scenarios will be selected and assigned by the Technical Lead using our issue management software | * Scenarios will be selected and assigned by the Technical Lead using our issue management software | ||
Line 40: | Line 54: | ||
^Author^Date of Revision/ | ^Author^Date of Revision/ | ||
|K. Cowie|12/ | |K. Cowie|12/ | ||
- | |K. Holub|1/11/2022|Added Dev Security Training Practices| | + | |K. Holub|4/12/2024|Adding listing of all current policies| |
[[: | [[: | ||
+ | |||
+ |