Security and Privacy in a Networked World/Procedures: Thou shalt not...

As illustrated by the title above, any larger community of humans throughout the history has had "the rules of game" (written or unwritten). The larger the difference between the "initiates" and the "mere mortals", the more vital are written, universal and enforced rules (they are usually called laws) - and security of a larger organization tends to have large difference here. And due to the the principle of the weakest link determining the strength of the whole chain, the axiom of ignorantia juris non excusat also applies.

• Importance
• Site and infrastructure
• Acceptable Use
• Data value classification
• Data disclosure and destruction
• Roles and responsibilities
• Change control
• Disaster recovery

Additional reading and links

• ANONYMOUS. Maximum Security: A Hacker's Guide to Protecting Your Internet Site and Network. 3rd ed. Sams Publishing, 2001.