O'Reilly logo

Writing Information Security Policies by Scott Barman

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Management Responsibility

Management’s responsibility goes beyond the basics of support. It is not enough just to bless the information security program; management must own up to the program by becoming a part of the process. Becoming part of the process is showing leadership in the same manner as it does in other aspects of the organization.

When I tell this to people in management, I get a reaction of shock or horror. After all, they are not trained in technology or information security. I explain that they do not have to understand how it works, but they need to be involved to ensure that the business processes are protected and not hindered by security decisions. Management has specific goals for the organization, and most security and ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required