Every company, no matter how large or small, needs to have a comprehensive information security program in place. But developing such a program is no easy task. If you’ve been assigned to this role in your organization, you may be wondering where and how to start. Gideon T. Rasmussen’s “10 Golden Rules of Information Security” will provide you with a framework on which you can build an information security program that fits your organization’s needs. These are high-level basics, but often one or more of these critical steps gets overlooked in the complex process of creating a company-wide program. It helps to have a clear and concise checklist to guide you:
http://www.net-security.org/dl/insecure/INSECURE-Mag-30.pdf#page=60