Security is always a critical concern. The right security policy protects you and your customers.
Written procedures and guidelinesPassword policies keep intruders from easily accessing your system. A data classification policy keeps sensitive information available only to those that need it.
Multiple layers restrict accessPasswords and access control lists can protect sensitive information. Only give access to what is needed, when needed – avoid giving more privileges than necessary.
Basic aspects are often overlookedNetwork/file servers should be separated from operations. Protect company assets by insulating employee duties so that they cannot abuse the system.