IT Tips for your Organization

IT Policy for Organization Phone Call Etiquette File Management

Other Basic ICT Tips

  1. Have copy of National ICT Policy.

  2. Know about International Internet Laws.

  3. Know Cyber Security and laws.

  4. Frequently change your Hotspot passwords, in an event where you share network password to visitors or participants during workshops, change password after every event.

  5. Logout your computer/device each time you leave your desk.

  6. Dont use your personal details as password; eg birthdate, name and telephone number

  7. Frequently backup important documents.

Article: IT Policy for Organizations

Auther: Ogwang Simon Peter (CEO Code Investments).

Published on 19th August 2024 by Code Investments

Creating a good IT policy is crucial for ensuring the security, efficiency, and productivity of your organization's IT infrastructure, here are some general tips to help you develop an effective IT policy.

Define Purpose and Scope

  • Purpose: Clearly state the purpose of the IT policy. This might include protecting organizational assets, ensuring data security, and promoting efficient IT use.
  • Scope: Define who the policy applies to (e.g., all employees, contractors, and third-party vendors) and which systems, networks, and data are covered.

Establish Clear Responsibilities

  • IT Department: Outline the responsibilities of the IT department, including network management, data security, and user support.
  • Employees: Define what is expected from employees, such as proper use of company devices, adherence to security protocols, and reporting IT issues.

Security Measures

  • Access Control: Implement strict access control measures. Define who has access to what information and systems.
  • Password Policies: Set guidelines for creating strong passwords and mandate regular password changes.
  • Data Protection: Establish protocols for data encryption, backup, and storage. Ensure compliance with data protection regulations.

Acceptable Use Policy

  • Device Usage: Specify acceptable uses of company devices, including computers, smartphones, and tablets.
  • Internet and Email: Define acceptable internet and email usage, including restrictions on visiting certain websites and using personal email accounts for work purposes.
  • Software Installation: Prohibit unauthorized software installations and downloads to prevent malware and other security risks.

Incident Response Plan

  • Reporting: Provide clear instructions on how employees should report IT incidents, such as data breaches, phishing attempts, or hardware failures.
  • Response: Outline the steps the IT department will take in response to an incident, including containment, investigation, and recovery.

Training and Awareness

  • Regular Training: Conduct regular IT security training sessions for all employees to keep them informed about the latest
  • Updates: Ensure employees are aware of any updates or changes to the IT policy.

Compliance and Monitoring

  • Compliance: Ensure the policy complies with relevant laws and regulations, such as GDPR, HIPAA, or industry-specific standards.
  • Monitoring: Implement monitoring systems to ensure compliance with the IT policy and to detect any violations or unusual activities.

Review and Update

  • Regular Reviews: Schedule regular reviews of the IT policy to ensure it remains relevant and effective in the face of evolving technology and threats.
  • Feedback:Encourage feedback from employees and other stakeholders to identify areas for improvement

Consequences of Non-Compliance

  • Disciplinary Actions: Clearly state the consequences for violating the IT policy, which might include disciplinary actions, termination, or legal consequences.
  • Enforcement: Ensure consistent enforcement of the policy to maintain its effectiveness and credibility.


Developing a robust IT policy is essential for protecting your organization's digital assets and ensuring smooth and secure IT operations. By following these tips, you can create a comprehensive policy that addresses your organization’s specific needs and challenges. Regular updates and training will help maintain the policy's relevance and effectiveness over time.

IT policy provides organization with both standards and secure ways of doing things that promote professionalism, having the policy in place is not enough, it requires every person to learn, understand and comply with it.