Chapter 33

Understanding the Importance of Policies to Organizational Security

This chapter covers the following topics related to Objective 5.3 (Explain the importance of policies to organizational security) of the CompTIA Security+ SY0-601 certification exam:

  • Personnel

    • Acceptable use policy

    • Job rotation

    • Mandatory vacation

    • Separation of duties

    • Least privilege

    • Clean desk space

    • Background checks

    • Non-disclosure agreement (NDA)

    • Social media analysis

    • Onboarding

    • Offboarding

    • User training

      • Gamification

      • Capture the flag

      • Phishing campaigns

      • Phishing simulations

    • Computer-based training (CBT)

    • Role-based training

  • Diversity of training techniques

  • Third-party risk management

    • Vendors

    • Supply chain

    • Business partners

    • Service-level agreement (SLA)

    • Memorandum ...

Get CompTIA Security+ SY0-601 Cert Guide, 5th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.