Many believe that security policy must be written down, coordinated with users,

Question

Many believe that security policy must be written down, coordinated with users, approved by senior management, published(that is, promulgated) for the users, and maintained over time. There are many ways that security policy can be presented to "consumers" but the standard sections listed in your text and the week 1 lecture are pretty common (the order of the sections varies a lot). Do you think it is important for security policy to be written down, coordinated with users, approved by management, and maintained over time? Or, are there times when "unwritten, uncoodinated, unapproved, or unmaintained' security policy is a good idea?

Explanation / Answer

Good wishes,

According to me I think it is important for security policy to be written down, coordinated with users, approved by management, and maintained over time.

Security policy

In the question you asked what i think about it and hence i answer purely from point of view, it may vary with others. This is my opinion.

Hope this is clear.

Related Questions

Navigate

• Browse (All)
• Browse M
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.