Information Security Policy Development for Compliance

Compliance standards, of which there are many, can and should be used as a guide to write comprehensive and effective security policies. Many standards cover much of the same topics, but they each state the requirements in slightly different ways. This book provides security managers with a simplified way to address the regulatory requirements of an organization by writing policy statements that specifically address these requirements. The book enables them to more efficiently write policies that meet the major regulatory requirements.