Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CompTIA Security + (SY0-701) > Section 27.260 Policy and Handbooks > Flashcards

Section 27.260 Policy and Handbooks Flashcards

Objective 5.6 Given a scenario, you must be able to implement security awareness practices

1
Q

Policies and Handbooks

Policy

A

A system of principles and rules guiding decisions, ensuring compliance
with legal and ethical standards

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Policies and Handbooks

Handbook

A

A comprehensive guide providing detailed information on procedures, guidelines, and best practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Policies and Handbooks

A

■ Policies and handbooks are living guidelines that shape behavior and decision-making in organisations

■ These documents vary between organisations based on industry, needs, and use
cases

■ Importance of not just reading but understanding the policies and handbooks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Scope of Policies and Handbooks

A

■ Cover various aspects in an organisation, e.g data protection, remote work,
technology use, conflicts of interest

■ Different handbooks for different aspects, e.g., Employee Handbook, Training
Handbook, Compliance Handbook

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Data Destruction Policy Example

A

■ Some policies may define rules for data disposal, e.g., shredding

■ Color-coded paper for document classification

■ Shredding of sensitive documents to prevent data breaches

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Remote Work and Data Protection

A

■ Organisations may have strict guidelines regarding remote work

■ Policies cover physical files and digital files that leave the office

■ Restrictions on what can be taken home or worked on remotely

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Policy Guidance for Daily Responsibilities

A

■ Provide guidance on handling various situations, e.g., data breaches, reporting
suspicious activity

■ Ensures employees know how to respond to specific scenarios

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Policy and Handbook Updates

A

■ Policies and handbooks should be reviewed at least annually

■ Updates to reflect changing cybersecurity landscape

■ Employee awareness of policy updates and significant changes is crucial

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Human Judgment and Culture of Security

A

■ Policies and handbooks may not cover every scenario

■ Employees should understand the “why” behind the policies to make judgment
calls

■ Creating a culture of security involves reporting gaps and fostering a secure
environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Importance of Employee Involvement

A

■ Encourage employees to bring up concerns and questions

■ Open communication with management and leadership teams

■ Collective responsibility in promoting a secure organization culture

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CompTIA Security + (SY0-701) (238 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions