Académique Documents
Professionnel Documents
Culture Documents
• Identity/user
• Confidentiality and privacy
• Networking
• Systems, hosts, and devices
• Middleware and applications
• Security management and process definition
• General
Additionally, AT&T has an active program for ensuring compliance with the
Sarbanes-Oxley Act of 2002. And we have annual security assessments
performed by third parties to test the effectiveness of our security program.
➢ Information Security
To secure data both in transit across the network and stored in the network,
AT&T has implemented a comprehensive security program that focuses on 13
major areas. The areas are derived from ISO 17799, COBIT, and other industry
best practices.
➢ Training and Education for Employees
AT&T has a security awareness program that's designed with modules to
address the needs of specific job functions and roles. For example, additional
technical training is included in the modules for developers, database
administrators, and system administrators; modules for executives emphasize
more corporate-level policies.
➢ Management Quality
At&t offers free Six Sigma training for their employees to maintain quality in
management inside the business. It is also an ISO certified company, many
certifications have been given to them including 9000, 9001, 22301, 27001, and
etc.
➢ Continuity Planning and Crisis Management
AT&T's enterprise-wide Continuity Planning and Crisis Management
program is designed to minimize risk to people, profit, process, and property
through defined best practices. The program has four phases namely, Prevention,
Mitigation, Response, Recovery.
➢ Industry Standing