CHAPTER 06: Combating cyber crime

Section 01 Combating Cyber Crime
Section 01: Combating Cyber Crime

Policy 060101 Defending Against Premeditated Cyber Crime Attacks
POLICY STATEMENT
“Security on the network is to be maintained at the highest level. Those responsible for the network and external communications are to receive proper training in risk assessment and how to build secure systems which minimize the threats from cyber crime.”

Policy 060102 Minimizing the Impact of Cyber Attacks
POLICY STATEMENT
“Plans are to be prepared, maintained and regularly tested to ensure that damage done by possible external cyber crime attacks can be minimized and that restoration takes place as quickly as possible.”

Policy 060103 Collecting Evidence for Cyber Crime Prosecution
POLICY STATEMENT
“Perpetrators of cyber crime will be prosecuted by the organisation to the full extent of the law. Suitable procedures are to be developed to ensure the appropriate collection and protection of evidence.”

Policy 060104 Defending Against Premeditated Internal Attacks
POLICY STATEMENT
“In order to reduce the incidence and possibility of internal attacks, access control standards and data classification standards are to be periodically reviewed while maintained at all times.”

Policy 060105 Defending Against Opportunistic Cyber Crime Attacks
POLICY STATEMENT
“it is a priority to minimize the opportunities for cyber crime attacks on the organization’s systems and information through a combination of technical access controls and robust procedures.”

Policy 060106 Safeguarding Against Malicious Denial of Service Attack
POLICY STATEMENT
“Contingency plans for a denial of service attack are to be maintained and periodically tested to ensure adequacy.”

Policy 060107 Defending Against Hackers, Stealth and Techno-Vandalism
POLICY STATEMENT
“Risks to the organization’s systems and information are to be minimized by fostering staff awareness, encouraging staff vigilance, and deploying appropriate protective systems and devices.”

Policy 060108 Handling Hoax Virus Warnings
POLICY STATEMENT
“Procedures to deal with hoax virus warnings are to be implemented and maintained.”