IT Guidelines Establishing Information Security Standards
IT Guidelines Establishing Information Security Standards Introduction Important Terms Used in the Security Guidelines Developing and Implementing an Information Security Program Designing Security Controls Training Staff Testing Key Controls Overseeing Service Providers Adjusting the Program Responsibilities of and Reports to the Board of Directors Appendix I. Introduction Purpose and Scope of the Guide This Small-Entity