Question:
Information Security Policies / Contingency Planning
This solution provides the learner with an understanding of management's role in the development and enforcement of information security policies, standards, practices, procedures and guidelines. In particular, the solution describes how an organization institutionalizes policies, standards, and practices using education, training, and awareness. Further, this solution explains the concept of contingency planning and how contingency planning is related to incident response planning, disaster recovery planning, and business continuity planning.