Short-term goals

Day-to-day tasks

Long-term direction and organizational goals

Technical implementation

Operational Planning

Strategic Planning

Tactical Planning

Administrative Planning

Enterprise Information Security Policy (EISP)

Issue-Specific Security Policy (ISSP)

Operational Security Policy (OSP)

Systems-Specific Security Policy (SysSP)

Writing security policies

Managing risk management practices and ensuring the protection of assets

Designing the security architecture

Implementing daily security tasks

Information Security Standards and Procedures

Issue-Specific Security Policy

Internet Security Service Providers

Information Security Service Protocols

Specific technical configurations for firewalls

Overview of corporate security philosophy

Minimum password length requirements

Steps for configuring an operating system

Enterprise Information Security Policy

Issue-Specific Security Policy

Systems-Specific Security Policy

General Information Security Policy