CompTIA Security+ SY0-601 Exam Cram, 6th Edition

Chapter 33 Organizational Security Policies

This chapter covers the following official Security+ exam objective:

▶ 5.3 Explain the importance of policies to organizational security.

Essential Terms and Components

▶ acceptable use policy (AUP)
▶ job rotation
▶ separation of duties
▶ least privilege
▶ nondisclosure agreement (NDA)
▶ service-level agreement (SLA)
▶ memorandum of understanding (MOU)
▶ business partnership agreement (BPA)
▶ interconnection security agreement (ISA)

Policy Framework

To ensure that proper risk management is coordinated, updated, communicated, and maintained, it is important to establish clear and detailed security policies that are ratified by an organization’s management and brought to the attention of its ...

Get CompTIA Security+ SY0-601 Exam Cram, 6th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA Security+ SY0-601 Exam Cram, 6th Edition by Diane Barrett, Martin M. Weiss

Chapter 33

Organizational Security Policies

Policy Framework

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly