Average Reviews:
(More customer reviews)This is a useful book for me to reference, especially when I deal with challenges in security policy framework review. The most impressive pages include the tier 1-2-3 framework, proper wordings in policy, policy sample studies and analysis, complete checklist and questionnaire.
After reading this book or on-and-off reference, I always remember four major elements in a policy:
1.Topic
2.Scope
3.Responsibility
4.Compliance
In addition, I have shared this book with an IT supervisor, he always go for this book for the team reference. I do feel happy to recommend it. Moreover, it readily happens to me I could apply the hints and tips from this book to the revised policy. Meanwhile, compared with the company's policy, it is undoubted organized and logical.
Be honest, in reality, many people still always mix up policy, standard and procedures as well as guidelines and produce a "Spaghetti-like" document to deal with auditor and compliance once a year only, you could say, many companies treat it as a last-minute homework.
Click Here to see more reviews about: Information Security Policies and Procedures: A Practitioner's Reference, Second Edition
0 comments:
Post a Comment