Sec35_Y

Project One Memo Template

Complete this template by replacing the bracketed text with the relevant information.

DATE: [Insert date]

TO: Company Leadership

FROM: Information Security Manager

SUBJECT: [Insert title]

Introduction: [Insert text to describe how the evaluated elements of information security being addressed will support the company’s business objectives.]

Laws and Regulations: [Insert text to explain how laws and regulations influence information security policies and procedures within this company.]

Technical Controls: [Insert text to describe the technical controls that you would recommend to address at least three indicated information security risks from the consultant’s findings.]

Administrative Controls: [Insert text to describe the administrative controls that you would recommend to address at least three indicated information security risks from the consultant’s findings.]

Physical Controls: [Insert text to describe the physical controls that you would recommend to address at least three indicated information security risks from the consultant’s findings.]

Business Impact: [Insert text to explain how your recommendations impact current information security policies and practices within this company.]

Conclusion: [Insert text to explain why leadership should act on these control recommendations to improve the company’s information security posture. Your conclusion can also include a brief summary, although it is not required.]

1