Commit 0f1974ed authored by Oliver Lowe's avatar Oliver Lowe

security-policy: remove old policy, update intro

There was an old file, security-policy.md, which contained basic IT security
guidelines for OlinData. The new security-policy directory replaces this, so we
can remove the old one.

security-policy/README.md referred to the security-policy repository, but there
is no reposity; it is part of the employee handbook. So we update the
references to itself so it's acccurate.
parent 67bc55da
# Security policy
## OD Account and Password policy:
- for your company Google account, and all the other accounts that do not support federated access with Google, please make sure that you use secure, **unique** passwords, and keep them safe
using a password manager software ([LastPass](https://www.lastpass.com/), [Dashlane](https://www.dashlane.com/), [KeepPass](https://keepass.info/), etc.)
- passwords complexity:
- min 10 characters long (need to check with the Gsuite admin if this actually enforced, if not it should be enforced to 10 or better 12)
- contain uppercase characters
- contain lowercase characters
- contain base 10 digits (0 through 9)
- contain nonalphanumeric characters: ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/
- can't begin or end with a whitespace character
- [Google 2-step verification](https://www.google.com/landing/2step/) is enabled
on all OlinData Google accounts by default.
# Welcome to OlinData's Security Policy repo
# Welcome to OlinData's Security Policy
This repository contains the current security policy in place. Please keep in mind that we will consistently update this repo to make our practices on par with the most recent security trends and compliance standards.
Please keep in mind that we will consistently update this policy to make our practices on par with the most recent security trends and compliance standards.
We are open to listen your suggestions and you're free to branch this repo should you want to contribute. No master commits should be done without proper review.
We are open to listen to your suggestions and you are free to send contributions via merge requests.
All changes should be reviewed before commit.
--
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment