Publishing and Notification Requirements of the Policies
After the policies have been written, they will not do your organization any good if they sit on the shelf collecting dust. Not only should it be a living document, but it also should be accessible to all users. A common way of doing this is to publish the policies on the organization’s intranet. This way, not only are the policies available to all users, but your organization will save on printing costs—and updates can be made in one central location without having to ensure they are distributed.
Policies in this area should cover both the publishing of the policy documents and notification of when published. This policy also should cover who is responsible for these acts. Many organizations ...
Get Writing Information Security Policies now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
