
Information Technology / Security & Auditing
Although compliance standards can be helpful guides to writing comprehensive
security policies, many of the standards state the same requirements in slightly
different ways. Information Security Policy Development for Compliance:
ISO/IEC 27001, NIST SP 800-53, HIPAA Standard, PCI DSS V2.0, and AUP
V5.0 provides a simplied way to write policies that meet the major regulatory
requirements, without having to manually look up each and every control.
Explaining how to write policy statements that address multiple compliance
standards and regulatory requirements, the book will help readers elicit
man