3. Laws and Regulations
https://www.youtube.com/naggaracademy
Laws and Regulations means any and all applicable
current or future laws, rules, regulations, ordinances,
codes, orders and permits of the governmental and
quasi-governmental bodies, agencies, authorities and
courts having jurisdiction.
4. Standards
https://www.youtube.com/naggaracademy
Set of criteria organizations can follow to protect their
business. Different standards are developed by various
organizations and agencies, such as the International
Organization for Standardization (ISO) and the National
Institute of Standards and Technology (NIST)
6. Security Policy
https://www.youtube.com/naggaracademy
IT Security policy is a document that spells out the rules,
expectations, and overall approach that an organization
uses to maintain the confidentiality, integrity, and
availability of its data. Security policies exist at many
different levels, from high-level constructs that describe
an enterprise’s general security goals and principles to
documents addressing specific issues, such as remote
access or Wi-Fi use.
7. Security Committee
https://www.youtube.com/naggaracademy
The responsibilities of the Information Security
Committee are:
Formulate, review, and recommend information
security policy.
Review the effectiveness of policy implementation.
Provide clear direction and visible management
support for security initiatives.