Scribd Logo
Upload

Welcome to Scribd!

  • 2 - Security Policy

    Uploaded by

    Mohamed
    14 views15 pages
    A security policy should describe how a company addresses security issues and be reviewed regularly. It should also identify assets needing protection, threats, and procedures for security breaches. All employees must understand and adhere to the security policy to share responsibility for security. Top management such as the CEO, CIO, CTO, CSO, and CFO provide leadership over security.

    Original Description:

    Original Title

    2- Security Policy

    Copyright

    © © All Rights Reserved

    Available Formats

    PPT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    A security policy should describe how a company addresses security issues and be reviewed regularly. It should also identify assets needing protection, threats, and procedures for security breaches. All employees must understand and adhere to the security policy to share responsibility for security. Top management such as the CEO, CIO, CTO, CSO, and CFO provide leadership over security.

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    14 views15 pages

    2 - Security Policy

    Uploaded by

    Mohamed
    A security policy should describe how a company addresses security issues and be reviewed regularly. It should also identify assets needing protection, threats, and procedures for security breaches. All employees must understand and adhere to the security policy to share responsibility for security. Top management such as the CEO, CIO, CTO, CSO, and CFO provide leadership over security.

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 15

    CompTIA Security+

    Security Policy
    • A security policy should describe how a company
    addresses security issues

    • Though local security policies may vary between


    organizations, there are questions all organizations
    should ask:

    1. What assets require protection?


    2. What are the possible threats?
    3. What should be done in the event of a security
    breach?
    https://www.sans.org/information-security-policy
    Security Policy
    • A security policy should describe how a company
    addresses security issues

    • Though local security policies may vary between


    organizations, there are questions all organizations
    should ask:

    1. What assets require protection?


    2. What are the possible threats?
    3. What should be done in the event of a security
    breach?
    Security Policy
    • Security policies should be reviewed regularly and
    updated as necessary.

    • You should keep a revision history to track all policy


    changes.

    • Security is the responsibility of every person within


    the company. All employees, including non-
    computer users, must be trained to understand the
    security policy and notified of any security policy
    updates.
    Top Management
    • CEO (Chief Executive Officer).

    • CIO (Chief Information Officer).

    • CTO (Chief Technology Officer) (Chief Technical Officer)

    • CSO (Chief Security Officer).

    • CISO (Chief Information Security Officer).

    • CFO (Chief Financial Officer)


    https://www.sans.org/information-security-policy
    Finished

    You might also like