× Welcome to SGCyberSecurity forum!

Feel free to discuss any topics relating to cybersecurity with the rest of the security community in this forum.

Topic-icon Cybersecurity Policy vs General IT Policy

55 years 1 week ago #3065 by o_living soul

for my organization, we combined all into one policy for easy tracking. i heard of some companies having many SOPs, depends on ur needs.

Please Log in or Create an account to join the conversation.

55 years 1 week ago #3075 by o_twentysomething

Mine has a dedicated cyber security policy as it covers quite a lot of details. :)

Please Log in or Create an account to join the conversation.

55 years 1 week ago #3076 by o_merlionguy

well, good to have a dedicated one. u can build on it as time goes, there's so many things about cybersecurity. having one sop will help give ur mgmt a better view too.

Please Log in or Create an account to join the conversation.

55 years 1 week ago #3090 by o_Kenneth Lee

One thing to note though is while having policies are good, make sure there is a plan to implement them too. Otherwise it will just be some bytes on a hard disk somewhere.

Please Log in or Create an account to join the conversation.

55 years 1 week ago #3091 by o_merlionguy

@Kenneth Lee totally agree with you. Many a time, these policies are created just to fulfill audit or environmental needs. To really have a good plan to implement them is another story. that's why auditors always ask for evidences of implementation. :)

Please Log in or Create an account to join the conversation.

55 years 1 week ago #3325 by o_cyberfox123

I think having one policy will be enough. But u need to put in all the necessary details to tackle all the security needs of ur company.

Please Log in or Create an account to join the conversation.