Access Control Policy
This sample policy will assist your organization in documenting the controls in place that prevent unauthorized access to information assets and protect the information in those assets against unauthorized access.
In an effort to arm and empower businesses with free tools to help keep their businesses secure from cyber threats, the policy below was provided as a courtesy by the New York State Department of Financial Services (DFS) and is provided on an “as is” basis. This policy is intended for information purposes only and does not constitute legal advice. It contains sample text and is customizable to suit your organization. DFS assumes no liability or responsibility for any errors or omissions in the content, including as a result of changes to DFS’s regulations since the date of this policy. Some elements may not be practical for every organization and more may be required.
You can download the template by clicking “Read More” below.