Information systems security policies should support business operations. These policies focus on providing
consistent protection of information in the system. This happens by controlling multiple aspects of the
information system that directly or indirectly affect normal operations at some point. While there are many
different benefits to supporting operations. some are more prevalent than others. Which of the following are
aspects of ISS policies that extend to support business operations?
A. Controlling change to the IT infrastructure
B. Protecting data at rest and in transit
C. Protecting systems from the insider threat
D. All the above
FOOVERFLOW.COM
