The purpose of this assignment is to describe how risk is identified and assess risk based on probability of occurrence and likely impact to the organization. To do this, in no less than 150 words, answer ONLY the questions below from exercise question 3 in Chapter 4 in APA format. Can be found on page 247.
1) Search the Web for examples of issue-specific security policies. What types of policies can you find?
2) Using the format provided in this chapter, evaluate the example below of an issue specific policy answering the question…does it contain all the elements listed in the text? Be sure to identify both pros and cons of the policy.
A Sample Issue Specific Policy has been uploaded as well as the book.