CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition

CHAPTER 21 The Importance of Frameworks, Policies, Procedures, and Controls

In this chapter you will learn:

• Common information security management frameworks

• Common policies and procedures

• Considerations in choosing controls

• How to verify and validate compliance

Innovation and best practices can be sown throughout an organization—but only when they fall on fertile ground.

—Marcus Buckingham

It is never a good idea to reinvent the wheel. It wastes time and you could end up with a worse wheel. This is particularly true in cybersecurity, where many great minds have spent years curating best practices and organizing them in useful ways. One of the byproducts of their efforts is the development of frameworks that provide structure ...

Get CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide, Second Edition (Exam CS0-002), 2nd Edition by Brent Chapman, Fernando Maymi

CHAPTER 21

The Importance of Frameworks, Policies, Procedures, and Controls

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly