Network Security Policy

Recognizing that employees may use Arts Management computers from time to time for non-related Arts Management business; this document outlines Arts Management’s position on the Network Security Employees need adhere to during the performance of their duties.

 

Network Security Policy

It is Arts Management Systems policy that Employees:

  • Adhere to safe computing practices when using the Intranet, Internet, Email, IM, FTP, web and other related communication tools;
  • Use the company network for work related to Arts Management Systems in performance of their duties;
  • Obtain specific approval for non-work related uses or for an exception to any item mentioned in this policy; and
  • Prevent others from contravening the Network Security Policy.
  • Ensure the Firewall is enabled on their computer
  • Use Company authorized hardware for their network connections
  • Use a VPN at all times to access company servers

 

General

  • Arts Management Systems hereinafter called “AMS”.
  • AMS spends considerable resources to implement and maintain a corporate network of computers, routers, telephony, VPNs, data services, corporate information, and application portfolio’s (hereinafter called “assets”) for the benefit of the company and its employees. It is the intent of the company to safeguard those assets and ensure that the company adheres to copyright and fair trade practice.
  • AMS employees are encouraged to take full advantage of this network (Intranet), including the Internet access to the World Wide Web, subscription-based information resources, newsgroups, list-servs, bulletin boards, threaded discussions, Telnet and FTP resources to maintain a knowledge base suitable for the successful performance of their duties.

 

Revision History

  • April 2006
  • Aug 2020

Security Implementing

There are a number of phishing attacks and reports of stolen laptops, etc. Doug (in early 2006) lost his iPod and thank goodness it didn't have any data on it. So in the interest of corporate security, we're looking at implementing:
  • a firmware patch so that you need a password to get a machine started and booted
  • implementation of passwords on start up (we are all there anyway)
  • implementation of passwords on wake from sleep mode
  • implementation of some 'phone home' software where if your machine wakes up in an unknown IP address, it sends an email to a specified email address to let us know where it is should somebody else "borrow" your laptop without you knowing.

Data Security

Refer to the Data Policy

Tools

  • There are a number of tools that AMS has for just doing stuff and manipulating data such as BBEdit, Microsoft Excel, and what have you, or tools for connecting to clients such as Timbuktu, Remote Desktop, Team Viewer and VNC. AMS would like to make sure everybody has the full complement of tools available... just in case they are needed.

General Maintenance

  • AMS also wants to do diagnostics on each computer to make sure its ok. This includes Diskwarrior to fix the desktop, Apples' repair permissions to correct some permission setting that seems to happen to log files and plists (and affect some software updates coming in) and, making sure that latest software updates are run.
  • Clearing out system logs that have grown. I just removed some stuff and got back half gigabyte of system logs. These are in /var/logs, /library/logs ~/library/logs
  • Updating bluetooth firmware
  • Updating any other software

Routers & Wireless Connections

To be documented.

General Questions

There are no general questions at this time.