(Management of Information Security) There are six Principles of Information Security Management, namely:
1. Planning
2. Policy
3. Programs
4. Protection
5. People
6. Project Management.
Are there any others you can think of: They don't have to start with the letter "P", but that's a good place to start.
The authors then go on to expand a great deal upon Project Management. Why do you suppose that is?
Ignoring the Project Management Principle for a moment, of the others, which is the most important, and why?