In my last article I spoke at some length about not just why a Security Policy is important, what its content should be, but also how it should be written. There is no default setting for Security Policy. Remember, what works for one organisation probably won’t work for another. There are numerous websites on the … Continue reading If you are not measuring it, you are not managing it.