IT@Intel Blog: The Information Security Policy Must Be Marketed To Employees

Change Language Setting

Up to Blog Posts in IT@Intel

Previous Next

IT@Intel Blog

Currently Being Moderated

The Information Security Policy Must Be Marketed To Employees

Posted by Matthew Rosenquist on Jan 23, 2009 6:13:18 PM

Don't assume people will read the security policy!

Just because the policy is posted, does not mean everyone will read it.

Listen to the Audiocast:Information Security policy must be marketed to employees

Policy, like any other communication, must be marketed. It is the role of the security professional to show the end-users the value and how it helps them. Make it personal.

References: SANS.org blog: How to Suck at Information Security

Tags: optimal_security, policy, strategy, value, security, risk, matthew_rosenquist, rosenquist, information_security, model

Add a comment Leave a comment on this blog post.

There are no comments on this post

IT@Intel Blog

The Information Security Policy Must Be Marketed To Employees

Post a comment

Actions

Recent Comments

Popular Blog Posts

Recent Posts