Cybersecurity security policies cover a broad range of topics, from appropriate use of computing resources within an organization to specific guidelines regarding computing devices and applications. But for too many organizations, policies often fall short of meeting organizational objectives if they are not married with procedure-level documentation and user training to support the “how” of policy compliance or execution. Do your policies reflect the objectives of your nonprofit organization? Does everyone understand and follow your cybersecurity policies? How can you know?
In this course, you’ll learn about cybersecurity policies, standards, guidelines, and procedures, including when to use each document. You’ll review online resources, sample cybersecurity policies, and learn to draft and implement policies to protect nonprofit information assets effectively. You’ll learn to start from a mindset of balancing organization objectives, cybersecurity risk, and organizational risk tolerance.