Marshall is the information security manager for his company. Marshall was just hired on two months ago after the last information security manager retired. Since the last manager did not implement or even write IT policies, Marshall has begun writing IT security policies to cover every conceivable aspect. Marshall’s supervisor has informed him that while most employees will be under one set of policies, ten other employees will be under another since they work on computers in publicly-accessible areas. Per his supervisor, Marshall has written two sets of policies. For the users working on publicly-accessible computers, their policies state that everything is forbidden. They are not allowed to browse the Internet or even use email. The only thing they can use is their work related applications like Word and Excel.
What types of policies has Marshall written for the users working on computers in the publicly- accessible areas?
A.
He has implemented Permissive policies for the users working on public computers
B.
These types of policies would be considered Promiscuous policies
C.
He has written Paranoid policies for these users in public areas
D.
Marshall has created Prudent policies for the computer users in publicly-accessible areas
Explanation:
It says that everything is forbidden, this means that there is a Paranoid Policy implemented