CSIA 413: Cybersecurity Policy, Plans, and Programs
***DO NOT copy a source from the Internet and switched words to try and avoid plagiarism detection. DO NOT use answers already posted on Coursehero. This assignment will be submitted through Turnitin for plagiarism and a 0 grade is given for the entire assignment if any plagiarism.***
As a staff member supporting the CISO, you have been asked to research what the three policies should contain and then prepare an “approval draft” for each one. No single policy should exceed two typed pages in length so you will need to be concise in your writing and only include the most important elements for each policy.
The policies are to be written for EMPLOYEES and must explain employee obligations and responsibilities. Each policy must also include the penalties for violations of the policy and identify who is responsible for compliance enforcement.
Your “approval drafts” will be submitted to the IT Governance Board for discussion and vetting. If the board accepts your policies, they will then be reviewed and critiqued by all department heads and executives before being finalized by the Chief of Staff’s office. The policies will also be subjected to a thorough legal review by the company’s attorneys. Upon final approval by the Corporate Governance Board, the policies will be adopted and placed into the Employee Handbook.