Network Security Awareness
Legislative Research Commission, Kentucky
Employee Handbook
 Download PDF Version of Complete Handbook
Introduction
As reliance on exploding computer technologies continues to grow each year, LRC network security risks continue to grow as well. The primary areas of security risks remain to be e-mail and Internet usage. A tremendous amount of information is collected and exchanged each day throughout this agency on computers utilizing e-mail and the Internet. As we all appreciate the benefits of speed that these technologies afford us, let us be reminded of the very important network security policies that must be followed to ensure that the confidentiality of LRC work and the safety of our network devices are protected at all times. Please enjoy the efficiency and convenience, that the LRC computer network offers all employees in their professional endeavors. However, it is mandatory that each of us follows the recommended practices for keeping our workstation free of viruses, hackers, spyware, and other malicious attacks that are multiplying daily. Thank you all for your individual roles in keeping our network safe.
Table of Contents
Password-Protected Screen Savers
Passwords and Network Security
Anonymity, Privacy and the Internet
The Myth of Web Browsing Anonymity
Content Monitoring and Logging
Browser History and Cache Files
Spyware, Web Bugs, and Cookies
Conclusion
Social Engineering – The New Confidence Game
Shoulder Surfing
Network Sniffing
Help Desk Hacks
Trojan Horse Attacks
Phishing Schemes
The Undercover Repairman/Deliveryman
The Survey or "Free Stuff"
Conclusion
Spyware
E-Mail Best Practices
Instant Messaging and Peer-to-Peer Vulnerabilities
Physical Security and Rogue (Non-LRC) Devices
Glossary of Terms
Appendix (excerpt from LRC Personnel Policy Manual)
Use of LRC Computers
Internet Usage Policy
Electronic Correspondence Usage Policy
 NALIT 2005 Seminar Handouts
|
