Information Security Standards
The word "standard" is occasionally used with the perspective of information security policies to differentiate between the written procedures, policies and standards. Enterprise should keep up with the all three stages of record keeping, to help in securing their business atmosphere.
Information security policy is a rule or sophisticated statement about protecting people or system. (For instance, an information security policy would issue the rule that "ABC Company will uphold password security") A "standard" is a rock bottom (low-level) instruction for numerous ways in which the corporation will impose on the agreed policy. (Such as, "Passwords will be of minimum 8 characters, and it should have no less than one number.") A "procedure" can be described as a gradual or a step by step way of executing different standards. (Like, "ABC Company will permit password of secret code length controls on all the manufactured Windows systems.")