LAB 10 Aligning an IT Security Policy Framework to Seven Domains of a Typical IT Infrastructure

EXY Credit Union/Bank

{Insert the Policy Definition Name Here}

Policy Statement

{Insert the policy you wrote for the selected IT security policy definition from step5.}

Purpose/Objectives

{Insert the policy’s purpose as well as its objectives; use a bulleted list of the policy definition. Be sure to explain how this policy definition fills the identified gap in the overall IT security policy framework definition and how it mitigates the risks, threats, and vulnerabilities identified.}

Scope

{Define this policy and its scope and whom it covers. Which of the seven domains of a typical IT infrastructure are impacted? What elements, IT assets, or organization-owned assets are within the scope of this policy?}

Standards

{Does this policy point to any hardware, software, or configuration standards? If so, list them here and explain the relationship of this policy to these standards.}

Procedures

{Explain in this section how you intend on implementing this policy organization-wide.}

Guidelines

{Explain in this section any roadblocks or implementation issues that you must address and how you will overcome them as per defines policy guidelines.}