Professional Documents
Culture Documents
Shakir Goldsmith
CISSP Notes
A policy is typically a document that outlines specific requirements or rules that must be
met. In the information/network security realm, policies are usually point-specific,
covering a single area. For example, an "Acceptable Use" policy would cover the rules
and regulations for appropriate use of the computing facilities.
Network security consists of the policies and practices adopted to prevent and monitor
unauthorized access, misuse, modification, or denial of a computer network and
network-accessible resources.
The most common and simple way of protecting a network resource is by assigning it a
unique name and a corresponding password.
Domains of COBIT5