After outlining steps in establishing a computer security program, the manual details how to start and manage computer security. This includes policy suggestions, steps in getting started, job descriptions, risk management, and standards and guidelines. Suggestions for specific security projects focus on design, systems personnel, vital records, and relocation. Advice for protecting the data center covers access controls; fire protection; electrical power management; air conditioning; and static, dust, and water control. The discussion of software security emphasizes data access control, including the selection of data security software, a comparison of security software packages, and the implementation of data access control at three facilities. Other topics considered are communications security, disaster recovery planning, and auditing. A discussion of contemporary issues addresses legal concerns, computer crime, privacy, ethics, office automation, and data valuation. A list of information sources.