An Information Security Policy is the cornerstone of an Information Security Program. It should reflect the organization’s objectives for security and the agreed upon management strategy for securing ...

For the first time in 15 years, the White House is circulating major changes to the policy document that governs the management and security of federal IT systems and data. A copy of the document, ...

As I mentioned in my last article, security policies serve to protect (data, customers, employees, technological systems), define (the company’s stance on security), and minimize risk (internal and ...