Reply To: OCU C)SP D Week 05 Lesson 11 Discussion
I really want to commend you for doing a great job in summarizing all the major policies that strengthen an entity’s security program. I especially agree with your comment on incident response policy; it is very important to have clear plans and strategies before the actual cyber-attack for damage minimization and reduced recovery time. I would further add that policy reviews and audits are equally crucial as the policies themselves. Even the best rules become outdated with advancements in technology and threats. By scheduling periodic reviews and testing response procedures, a company can ensure its security framework remains effective and current.
