From the course: Certified Information Security Manager (CISM) Cert Prep (2022): 1 Information Security Governance
Join today to access over 23,200 courses taught by industry experts.
Data security policies
From the course: Certified Information Security Manager (CISM) Cert Prep (2022): 1 Information Security Governance
Data security policies
- [Instructor] Policies form the foundation of any information security program, and having strong data security policies is a critical component of your efforts to protect information. Data security policies and procedures play several important roles in an organization. No matter what specific issue a policy or procedure covers, it should meet several key criteria. First, policies provide the foundational authority for data security efforts, adding legitimacy to your work and providing a hammer if needed to ensure compliance. They also offer clear expectations to everyone involved in data security by explaining what data must be protected and the controls that should be used to protect that data. They provide guidance on the appropriate paths to follow when requesting access to data for business purposes, and they offer an exception process for formally requesting policy exceptions when necessary to meet business…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.