Information Security/Security Policies
Bobbi Bruce
IT 244
March 13, 2013
James Sershen

Title | Week 1 - Understand Information Security and Defining Security Policies |

Assessment.1 | Program-level | ☐ Serves to make sure that a system fits in the overall structure of the business.
☑ Helps you to set up a security system, assign roles and responsibilities, determine your security goals, etc.
☐ Needs to state the security goals and how to achieve them for a particular system.
☑ Involves a stated purpose, scope, responsibilities, and compliance.
☐ Often requires changes in order to remain current and relevant.
☐ Provides organization-wide direction for implementing the security program.
☐ Addresses a particular area of concern that may or may not be a concern at some other time.
☐ Defines the elements that form the basis of the security program. | | Program-framework policy | ☐ Serves to make sure that a system fits in the overall structure of the business.
☐ Helps you to set up a security system, assign roles and responsibilities, determine your security goals, etc.
☑ Needs to state the security goals and how to achieve them for a particular system.
☐ Involves a stated purpose, scope, responsibilities, and compliance.
☐ Often requires changes in order to remain current and relevant.
☑ Provides organization-wide direction for implementing the security program.
☐ Addresses a particular area of concern that may or may not be a concern at some other time.
☐ Defines the elements that form the basis of the security program. | | Issue-specific policy | ☐ Serves to make sure that a system fits in the overall structure of the business.
☐ Helps you to set up a security system, assign roles and responsibilities, determine your security goals, etc.
☐ Needs to state the security goals and how to achieve them for a particular system.