Information Security Policy - A Development Guide for Large and Small Companies

A security policy should fulfill many purposes. It should: protect people and information; set the rules for expected behaviour by users, system administrators, management, and security personnel; authorize security personnel to monitor, probe, and investigate; define and authorize the consequences...

By

Sorcha Diver

March 2, 2004

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Cybersecurity and IT Essentials, Cybersecurity Insights

October 24, 2024

The ABCs of Cybersecurity

A glossary of cybersecurity terminology that will help you quickly get up to speed on the industry’s terms and meanings.

Why SANS - Blog - Zero Trust - Best Practices for Securing Your Network with Zero Trust Network Access_340 x 340.jpg

Cybersecurity Insights

August 16, 2024

Best Practices for Securing Your Network with Zero Trust Network Access

Zero Trust Network Access has emerged from the rapidly evolving world of cybersecurity as a critical strategy for protecting networks.

Cybersecurity Insights

December 7, 2020

SANS Zoom Backgrounds

Download our Zoom backgrounds!