A new ISACA resource helps organizations to utilize policy templates for more efficient and responsible operations.
The ISACA resource, Getting Started With the Policy Template Library, provides enterprises with a starting point to build and customize the principles necessary to meet the needs of their specific operational environments and compliance requirements. The policy templates included in this library meet the following objectives:
- Objective 1—Define the purpose and owner(s) of the policy.
- Objective 2—Describe the parties (employees, contractors, third parties, etc.) expected to comply with the policy.
- Objective 3—Communicate the roles and responsibilities for the key activities defined in the policy and the consequences of noncompliance.
- Objective 4—Establish a timeline for periodic review and approval of the policy.
The resource also highlights several key information and technology policy objectives, such as acceptable use, change management, data backup, and others.