Chapter 2.a

Tier 2—Policy Administrator

Abstract

Policies are the core of any organization’s security infrastructure. Clearly defined policies provide guidance to those that are responsible for implementing security controls across the company. The Policy Administrator is not responsible for setting policy. Management and subject matter experts with expertise in the appropriate regulations are commonly responsible for setting the policy.

Keywords

policy
administration
management
security controls
documentation

Introduction

Policies are the core of any organization’s security infrastructure. Clearly defined policies provide guidance to those that are responsible for implementing security controls across the company.
While the above statement may ...

Get Breaking into Information Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.