Project 10 – Drafting Security Policies

This week’s topic, information security policies, is perhaps the most important topic that a Business major can take from this course. This is the governance layer that lays the bedrock for your organization’s security posture. Sure, the technical folks are responsible for executing that policy but this is where the leaders of a business get together, reach an agreement, at times do a sanity check on what is enforceable in the organization, and draft the rules that will make sure the organization is secure. This is not an exercise in putting down whatever “sounds” good in order to check the box and claim that your organization has policies. It takes a realistic perspective and evaluation on what is needed, what is possible, and what is enforceable. It is typically better to a have a weak policy that is enforced than to have a strong policy that is ignored. The resources provided include three articles on approaches to drafting and information security policy. Among the steps is to select a framework or set of standards. These could include “best practice” frameworks such as ISO 27001, NIST SP 800 Series, COBIT, ITIL, or similar guidelines. Depending on the industry, this will likely also include “compliance” standards such as PCI-DSS, HIPAA/HITECH, SOX, FISMA, GLBA, or other legal and regulatory obligations. The resources provided include the NIST Cybersecurity Framework as an example of best practice frameworks and the PCI-DSS compliance standards for those who process credit cards. Both of these will include specific elements or policies that should be included in your overall policy set. Additionally, I have included links to the Greater Houston Partnership’s Cybersecurity Assessment Tool, the FCC’s CyberPlanner Tool, and the Traveler’s Insurance Cyber Risk Pressure Test. These tools can help you evaluate your organization’s current posture. Such evaluations can help to flesh out the organization’s policies much like the best practice standards. Additionally, from a learning standpoint, they are a bit easier to go through than something like the full PCI-DSS standard. Last, but definitely not least, I have included a link to the SANS security policy template library. When it comes to actually drafting policies. These or similar “out-of-the-box” policy templates can provide a good start and help to understand the level of detail needed. Remember that details are important, but it should not be so complicated that it must be updated constantly or that it becomes unmanageable. This includes considering how much time you have available for dealing with policy issues. This is a lot of information. My primary concern this week is that you take the time to review the resources. It would be impractical to have you draft a policy or try to regurgitate all of what you see here. Read the articles, skim the frameworks and standards, tinker with some of the assessment/planning tools. For your web project, I’d like you to pick three things that stood out to you. This could relate to the process of drafting the policies, the contents of the frameworks or standards, the usefulness of the assessment/planning tools, the format/contents/level of detail in the policy templates, etc. Just choose any three things you learned and share your thoughts about them in 300-400 words. This is an informal assignment. Citations are not necessary unless you are quoting, but may be useful to indicate what you are referencing.

Don't use plagiarized sources. Get Your Custom Essay on
Project 10 – Drafting Security Policies
Get an essay WRITTEN FOR YOU, Plagiarism free, and by an EXPERT!
Order Essay
Homework Market
Order a unique copy of this paper
(550 words)

Approximate price: $22

Basic features
  • Free title page and bibliography
  • Unlimited revisions
  • Plagiarism-free guarantee
  • Money-back guarantee
  • 24/7 support
On-demand options
  • Writer’s samples
  • Part-by-part delivery
  • Overnight delivery
  • Copies of used sources
  • Expert Proofreading
Paper format
  • 275 words per page
  • 12 pt Arial/Times New Roman
  • Double line spacing
  • Any citation style (APA, MLA, Chicago/Turabian, Harvard)

Our guarantees

Since all our papers are written from scratch, the papers we submit are plagiarism free and we strictly adhere to lecturer’s instructions. Our writers are highly qualified from all over the world and include graduates and professors from most of the largest and known universities in the world. Once you have assigned us your assignment, we select the most qualified and reliable writer to handle your assignment.

Money-back guarantee

Unlike other writing companies, we encourage clients to draw back their money at any stage of the writing process if they experience any uncertainties with the quality of generated content. However, you will hardly have to make this decision because of our business approach that suits your needs.

Zero-plagiarism guarantee

We have an advanced plagiarism-detection system that flags any work that fails to meet the required academic expectations. Our company thrives in honesty, and as such, you will be guaranteed to achieve a paper that meets your expectations.

Timely delivery of urgent papers

At we have online agents that you can chat with to have your assignment taken care of with the little remaining time. Also, we have professional academic writers who will work on your assignment providing you with a high-quality paper at the same time. We can take care of your urgent assignments in less than 5 hours.

Privacy policy

We uphold confidentiality and privacy through our interactions with clients, an aspect that has enhanced our relationship with prospective customers seeking for assignment help. We do not disclose your information with third-parties; neither do we share your work with any other person apart from you.

We do not offer pre-written essays

We do not resell previously-done tasks delivered to other clients. When we deliver orders to our clients, we safeguard their privacy and confidentiality by ensuring the third party does not access the work. By writing the papers from scratch, we have managed to maintain a certain level of originality, which defines our business model. Our qualified editors proofread all submitted work to eliminate mistakes that can interfere with the credibility of the assignment.

Calculate the price of your order

550 words
We'll send you the first draft for approval by September 11, 2018 at 10:52 AM
Total price:
The price is based on these factors:
Academic level
Number of pages
× How can I help you?