A(n)____ defines an organization's security requirements as well as the controls and sanctions needed to meet those requirements.
A) information policy
B) security policy
C) computer policy
D) acceptable use policy

Question

Quizplus · Accepted Answer

A security policy outlines an organization's security requirements and the controls and sanctions necessary to meet those requirements. An information policy generally covers the overall management of information within an organization, while a computer policy outlines the rules for using computer systems and equipment. An acceptable use policy (AUP) is a specific type of computer policy that outlines acceptable and unacceptable behavior when using an organization's computer systems, networks, and other resources.

A(n)____ Defines an Organization's Security Requirements as Well as the Controls