Information Security Policies and Procedures: A Practitioner’s Reference, Second Edition – 2nd Edition ( 2004 )
This book illustrates how to develop the related standards, procedures, and guidelines for implementing policy. Each chapter provides advice on the structural mechanics of the various documents as well as an example of each form. This new edition updates material on the concept of responsibilities that reflects the general nature of the individuals responsible. Standards and procedures are also updated to reflect the work done in the field during 2002 with additional examples. ISO 17799 is used to identify possible standards that enterprises can create.
This includes better explanations of what to use and when to use it.