ISA Protection of Information B17-174x

Describe four (4) necessities of an IT policy

1. Includes a title, purpose, scope and context, statement of responsibilities, and time for updating
2. Linked to the entity’s strategy and objectives
3. Has a specified process for updates
4. Has an owner who ensures operation and updating