Professional Documents
Culture Documents
Lect 4
Questions
1) Do you conduct risk assessments?
2) Do you write policies?
3) Have you developed an information security management system?
4) Have you set up an information security governance mechanism
e.g. A steering committee?
5) Have you designed security controls for systems?