Considerations for Implementing Policies and Standards
Implementing your policies and libraries entails four major steps:
- Building consensus on intent
- Reviews and approvals for your documents
- Publication of the documents
- Awareness and training
Building Consensus on Intent
Separating the writing of the actual policy language from the discussion of the intent of the policy change is a good way to build a consensus. During this step, you should discuss the drivers for the change in terms of the operating model and principles. This reinforces the shared beliefs and helps promote the desired culture. As much as possible, it is desirable to have a consensus on at least the purpose of a policy. You may or may not be able to achieve consensus ...
Get Security Policies and Implementation Issues, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
