Policy Development and Management

Home » Services » Security Consulting » Policy Development and Management

The success of a security plan is contingent on the foundation of the organization’s policies and procedures. At Intrinium, we offer a tiered offering to develop and implement policies that fit within the confines of the organizations business needs as it relates to compliance requirements and best practices.


Policy Templates, accompanied by consulting hours


Policy Templates, with modest customization to fit business objectives, accompanied by additional consulting hours


Policy Development, aligned with necessary security framework, accompanied by additional consulting hours

The core business objectives are to:

Align policy templates, standards, and guidelines with the NIST framework and other industry best practices.*
Support new and existing initiatives while addressing any conflict and confusion with revised policies, standards, and guidelines.*

*Silver, Gold or Platinum level deliverables may vary.

We have the capabilities to provide support and templates for:


Acceptable Computer Use Policy
Asset Management Policy
Breach Notification Policy
Data Classification Policy
Business Continuity and Disaster Recovery Plan Policy
Information Security Policy
Remote Access Policy
Software Development Life Cycle Policy
Vulnerability Management Policy
Access Control Policy
Audit and Activity Review Policy
Change Management Policy
Data Retention and Disposal Policy
Encryption Policy
Password Protection Policy
Risk Management Policy
System Configuration and Application Hardening Policy
Wireless Security Policy
Anti-Virus and Anti-Malware Policy
Background Check Policy
Data Backup and Restoration Policy
Data Transmission Policy
Incident Response Policy
Physical Controls Policy
Security Awareness and Training Policy
Vendor Management Policy

We are here to help, contact us today.

Incident Response Plans: More Planning, Less Panic

In less than one year, we’ve seen whole cities taken out by ransomware with no business continuity or disaster recovery plan in place to bring themselves back up- but it’s not just cities that don’t have a plan for when a catastrophe (digital or physical) hits.
Having a plan to restore business operations will save time, money, and stress, but that’s half the equation.  The other half is to practice the plan, make sure all the moving pieces fit together and make sure everything is practical and timely. Enough businesses have spent six digits or more due to not having an incident response plan- set your business and your industry apart.

Capture the Flag Comes to Spokane

Chiara Morrison - Manager, Marketing  Spokane Mayor's Cyber Cup 2019 Chiara Morrison sat down to interview the creator of Spokane Mayor’s Cyber Cup 2019, Max Dulin, Senior at Gonzaga University, Computer Science Major. Chiara: Max, can you tell me a little bit about...

What is an Internal Vulnerability Test?

Chiara Morrison - Manager, Marketing  What is an Internal Vulnerability Test? The Intrinium Internal Vulnerability Assessment evaluates IT security from the inside of your organization and identifies critical vulnerabilities that could be exploited by attackers that...

What is a Risk Assessment?

Chiara Morrison - Manager, Marketing  What is a Risk Assessment? Risk Assessment is the combined effort of executing the following: 1.     Identifying and analyzing potential (future) events that may negatively impact individuals, assets, and/or the environment (i.e.,...

External Penetration Test 101

Chiara Morrison - Manager, Marketing  All businesses, large and small, face the growing challenge of Information Security within the organization. As an SMB, we know you want to protect your clients’ data and meet compliance requirements without allocating a...

Pin It on Pinterest