activity 3.3 review
christopher.Part 1: Review Questions
- What is information security policy? Why is it critical to the success of the information security program?
- For a policy to have any effect, what must happen after it is approved by management? What are some ways this can be accomplished?
- List and describe the three types of information security policy as described by NIST SP 800-14
- List and describe the three approaches to policy development presented in the text. In your opinion, which is better suited for use by a smaller organization, and why? If the target organization were very much larger, which approach would be superior and why?
Using the framework presented in this chapter, draft a sample issue-specific security policy for an organization. At the beginning of your document, describe the organization for which you are creating the policy, and then complete the policy using the framework. What other scenarios do you think are important enough to need a plan?
12 years ago
12
Answer(1)![blurred-text]()
Purchase the answer to view it
NOT RATED
information_systems_final.doc
Bids(1)
other Questions(10)
- a
- You have to define the term of sequestration and how it's effect the education, military, health, etc.
- Hum 205_Classical Societies Essay_Greek Period
- Philosophy unit 4 IP
- Evaluate
- African Destinations- BARBER MAKAYLA
- Applying Decision-Making Skills
- hrm 598 WEEK 8 FINAL EXAM
- ACC305 Wk 4 P8-5
- BUS 661 Leading Organizational Change Final Paper
