What three tasks are accomplished by a comprehensive security policy? (Choose three.)Select one or more:vaguenessgives security staff the backing of managementis not legally bindinguseful for managementsets rules for expected behaviordefines legal consequences of violations

You have recently been hired as a cybersecurity analyst for a large corporation. Your manager asks you to define what a security policy is. How would you best describe a security policy?1.0 MarksA comprehensive plan for safeguarding the organization's information and technology assetsA list of approved software applications and tools for employees to useA set of physical security measures implemented to protect the company's premisesA document outlining the procedures for handling cybersecurity incidents

The following is correct about information security policies and procedures for any organization/insititution a. Helps protects individuals from being victims of security incidents b. provide the steps to follow incase of a security breach c. helps one to understand the levels of responsibility involved d. All of the above

The key to security policy is being able to measure compliance against a set of controls Security controls define____you protect the information. The security policies should define _- you set the goal.Whether, ifWhere, whenHow, whyWhy, how

What is a security policy?

Information Security Policy [2] Organization of Information Security [3] Human Resources Security[4] Asset Management [5] Logical Security / Access control [6] Physical and Environmental Security [7] Operations Security [8] Communications Security [9] Systems Acquisition, Development, and Maintenance [10] Supplier Relationships [11] Information Security Incident Management [12] Information Security Aspects of Business Continuity Management [13] Compliance2. Create a table and list all controls for each domain in Figure 1. Refer pdf document attaches.