Good security decision-making is based on an organization's security goals. Security goals are communicated to managers, end users, and operations staff through a security policy. A security policy is a documented and formal statement of the governing rules that regulate how an organization manages, protects, and uses assets. The security policy generally addresses goals, objectives, beliefs, ethics, controls, and user responsibilities in the form of high-level and generalized statements.

SPI – Security Solutions works with designated customer staff to:

• Review existing security policies, both explicitly documented and implied
• Map policies into a customized Security Policy
• Train customer staff on Security Policy