A review of Internet security disclosed that users have individual user accounts with Internet service providers (ISPs) and use these accounts for downloading business data. The organization wants to ensure that only the corporate network is used. The organization should FIRST:
To ensure that only the corporate network is used for downloading business data, the organization should first include a statement in its security policy about Internet use. Establishing clear policies and guidelines provides a foundation for acceptable and secure Internet usage, setting expectations for employees. Once these policies are in place, the organization can implement technical controls or monitoring measures to enforce them.
the organization should FIRST use a proxy server to filter out Internet sites that should not be accessed, as this provides an effective means of controlling access to the Internet and preventing users from accessing non-business-related websites or services that could compromise the security of the corporate network.
yeah to have the proxy server set like that you need a policy first. It's C.
C, including a statement in the security policy about Internet use, is important but is not a complete solution in itself. A policy statement alone does not provide a mechanism for enforcing the policy, and it may not be sufficient to prevent users from accessing non-business-related websites or services.
I think its C. Before implementing any technical controls or monitoring measures, it is essential for the organization to establish clear policies and guidelines regarding Internet use. By including a statement in its security policy about Internet use, the organization sets expectations and provides employees with guidelines on acceptable and secure Internet usage.
C. include a statement in its security policy about Internet use
I vote for D
It is important to first implement a proxy server to control access to certain internet sites, and then update your security policies to clarify the rules and regulations for internet usage.