Our information security policies and procedures are written using simple terms and structured according to business function. Your employees will be able to apply the policies and procedures to their daily tasks. They also will be able to identify material risks and determine what policies or procedures have been implemented to help mitigate the risks.

Information security policies and procedures should be based on the company's culture, business processes and operating environment. They are intended to be enforced by management and actively used by employees at all levels of the organization. Ceptera builds customized policies and procedures for clients. The constantly changing information security environment compels us not to take a cookie-cutter approach when developing information security policies and procedures.