The purpose of this policy is to minimize the risk of loss or exposure of information maintained by Infinity Works.
This policy covers all computers and servers operating in Infinity Works.
- The use of removable media is highly discouraged.
- Information should be stored on removable media only when required in the performance of your assigned duties.
- When sensitive information is stored on removable media, it must be encrypted in accordance with the Infinity Works Computing Policy.
The ISMS Committee will request periodic internal reviews whereby they will sample removable media to ensure adherence with applicable Infinity Works policies and log the report with the ISMS committee.
Any exception to the policy must be approved by the ISMS Committee in advance.
An employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.
- Information Sensitivity Policy
- Cryptographic Controls Policy
- Data Protection Policy
- Device Policy
- Bring Your Own Device Policy
- Acceptable Usage Policy
- Computing Policy
The following definition and terms can be found in the SANS Glossary located at: https://www.sans.org/security-resources/glossary-of-terms/
- Encryption
- Removable Media
- Sensitive Information