One of the most common recommendations I hear in the Information Security industry is ‘the first thing you need to do is create an Information Security policy,’ a set of principles or actions designed to protect information (a definition based loosely on the dictionary definition). That sounds simple enough, but the devil is in the detail.

In my monthly guest blog with CSO’s online magazine, I delve into the top three mistakes that you need to avoid when it comes to setting Information Security policy.

Click here to read the blog.

Are you looking for more practical and specific guidance on how to work out the appropriate level of security for your organisation? If so, contact one of the Linus team today.