Please consider using.
Length: 5 to 7 paragraphs
Purpose: Provide background to the Red Clay leadership and answers the following question: Why should our company adopt an ISO/IEC 27001 compliant Information Security Program?
Type: Briefing Paper â€“ keep in mind that a briefing paper should stand alone and give the reader everything s/he needs to answer a question or get enough information to understand a need. The audience are not all technical, so keep your language in non-geek-speak or explain technical ideas/concepts.
Suggested headings/sections include:
Introduction â€“ You might consider providing a general description of what a security standard is and explaining at the general level how Red Clay can benefit from implementing a formally documented information security management system (program). Make sure your introduction has at least two sources (see rubric). You might also cover the purpose of the briefing paper.
ISO/IEC 27001 â€“ What It Is â€“ You might consider providing background about what the standard is and how it can help Red Clay.
ISO/IEC 27001 â€“ Standard Requirements â€“ You might consider providing more details about what the standard requires and provide specific examples of how the standard requirements relate to the Red Clay scenario.
ISO/IEC 27001 â€“ Policies that Support Red Clay Security Program â€“ You might consider addressing the standard’s requirements for policies to support the information security program that include specific policy examples and how those policies would support Red Clay.
Summary â€“ Recap what you wrote about.
Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.