Information Security Policy Download

As an Information Security Consultant regularly creating and implementing security policy for organizations I was distressed to see a poor quality security policy download by Tech Republic. The policy lacks many critical components, not the least of which is information ownership requirements, and information classification requirements.

Development of a good security policy should not be left to the amateur. This policy would make it almost impossible to investigate and prosecute computercrime, and attacks against company information systems. I would not recommend anyone use this policy as a template.