Why Information Systems Security Policies Are Important

ISS policies ensure the consistent protection of information flowing through the entire system. Information is not always static and often changes at it is processed. The information must be protected throughout the process at all times. Physical and logical access controls must work together to protect the data; however, that is not always the case. What about a disgruntled employee with elevated access privileges? How do you protect resources from someone with this kind of authorized access? Physical security has limits and should be viewed as one of several layers of control.

The following are foundational reasons for using and enforcing security policies:

  • Protecting systems from ...

Get Security Policies and Implementation Issues, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.