Security Policy Review.
Download two security policies you find on the internet, or use your own schools or firms policies. Some good examples you can start with are:
https://security.utexas.edu/policies/irusp
https://it.tufts.edu/resec-pol
1. Introduction paragraph that reviews the topic at a high level and tells the reader what to expect in this paper.
2. Give a brief overview on your personal thoughts on the overall format of each policy. Is the policy easy to read and understand? Is it well organized? Does it appear to be a complete policy?
3. Compare and contrast the two policies. For example, one may have a very in-depth acceptable use section while the other one may be lax. You don't have to compare every section, just pick a few to get a good understanding of where one may be lacking.
4. If you were the CIO of each firm, would you say you have an effective policy, or would you recommend an overview?