Policies, Procedures & Standards are the Foundation of any Information Security & Assurance Program
Establishes the Following:
• Who: Roles & Responsibilities • What: Policy & Standards • Where: Scope • When: Frequency, Timing • Why: Rationale • How: Standard Operating Procedure (technical details)
Made with FlippingBook - Online catalogs