Development and management of a security policy framework is difficult. Lengthy documents are often not the best way to convey the message effectively and assure policy compliance. This session will explore the challenges of developing and enforcing a security policy framework, and how moving into a lightweight, object-oriented approach can help to overcome these challenges.
Learning Objectives: 1: Understand the challenges of developing and managing a security policy framework. 2: Learn how object-oriented design concepts can help with some of these challenges. 3: Take away a template for information security policy framework you can adapt and use.
Pre-Requisites: Understanding of information security governance and policy framework development.