California 1386, Sarbanes-Oxley, and HIPAA are examples of what kinds of security policy directives?
A.
Regulatory
B.
Administrative
C.
Advisory
D.
Informative
Explanation:
Directives and mandates typically coming from outside the company from
the government, legal, or industry authorities are called regulatory policy
objectives. Administrative is not one of the three types of policies. Advisory
policies address requirements for certain types of behaviors or activities among the
workforce. Informative policies address educational awareness.