From Chapter 3 in the text on policy and implementation in network security:
a) What is a policy?
b) Distinguish between policy and implementation.
c) Why is it important to separate policies from implementation?
d) Why is oversight important?
e) Compare the specificity of policies, implementation guidance, and implementation.
f) Distinguish between standards and guidelines.
g) Must guidelines be considered?
h) List the three types of oversight listed in the text.
i) What is vulnerability testing, and why is it done?
j) Why is it important for policy to drive both implementation and oversight?
From Chapter 3 in the text on policy and implementation in network security
- Technology: WriteUps-papers-Essays-Designs
- Code: SHC_WriteUp_100057