With the description of the business environment (the fictional company that has opened in a shopping mall) in mind and your policy review and research complete, create a new security strategy in the format of a company memo (no less than 3–5 pages) in which you do the following:
Describe the business environment and identify the risk and reasoning.
Provide a brief description of all the important areas of the business environment that you have discovered in your research. Be sure to identify the reasons that prompted the need to create a security policy.
Assemble a security policy or policies for this business. Using the Memo Outline [PDF] as a guide, collect industry-specific and quality best practices. In your own words, formulate your fictional company’s security policy or policies. You may use online resources, the Strayer Library, or other industry-related resources such as the National Security Agency (NSA) and Security News, Trend Analysis and Opinion | Network World. In a few brief sentences, provide specific information on how your policy will support the business’ goal.
Develop the standards that will describe the requirements of a given activity related to the policy. Standards are the in-depth details of the security policy or policies for a business.
Develop the practices that will be used to ensure the business enforces what is stated in the security policy or policies and standards.