Risk Takers,

If all your business needs is to prevent the common cold, Symantec is way better than doing zero for minimum security.  I applaud Norton for even considering the needs of small business.  I see so many small companies that have no one to watch over their risk at all.

If you want some non-partisan advice, I would be glad to add it.  It is part of my computer security license requirements to help with public awareness.  As for me, I out grew Norton and its products.  If you are in the same boat or are near landing a contract with a larger business partner, I have some solid suggestions there.

Best Wishes,

Don Turnblade, CISSP, MCSE

602.881.3348

Since Steps #3 and #4 are so heavily focused on getting employees to cooperate, consider

a) reinforce this through initial and ongoing computer security brown bag lunches (yes, buying employees subs, pizza, etc. can be an effective way to get at least their tummies to listen while you explain the issues and how they can help)

b) have employees sign-off on their agreement to adhere to the policy

c) have a nominal cash reward/bonus for identifying security problems