Lenny Zeltser posted this little list over at SANS.org, and I thought it was good.  It was funny though, because I was asked to do the 8th bullet on the list last month.

http://isc.sans.org/diary.html?storyid=5644

Luckily the policy was for a separate office that has no internet accessible server, and with their firewall completely closed off from the outside they’re safe from incoming threats.  Then again, most threats usually come from within an organization….