IT Security Policy Framework
Assume that you have been hired as a consultant by a medium-sized insurance organization and have been asked to draft an IT Security Policy Framework.
Select a security framework, describe the framework selected, and design an IT security policy framework for the organization.
Describe the importance of and method of establishing compliance of IT security controls with U.S. laws and regulations, and how organizations can align their policies and controls with the applicable regulations.
Analyze the business challenges within each of the seven domains in developing an effective IT security policy framework.
Describe your IT security policy framework implementation issues and challenges and provide recommendations for overcoming these implementation issues and challenges.