INFORMATION SECURITY PROCEDURES AND STANDARDS
The bulk of this book addresses information security policies—frameworks, statements, review, and projects. For the most part, all of the advice and guidance applied to information security policies (e.g., frameworks, terms, and audience) can also be applied to procedures and standards as well. This chapter addresses the specific elements of information security procedures and standards that are unique.
5.1 Less Formal Language and Structure
The formal language of information security policies (e.g., use of the term shall) may be dropped from these more detailed documents. Information security procedures and standards are not the formal documents of policy that need to stick with legal terms and ...
Get Information Security Policies, Procedures, and Standards now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.