Fresh Thoughts #18: Policies, Plans and Bad Weather

chalk board with math formulas

If you spend enough time outside in bad weather, you learn storms have shapes. Small storms - squalls - can float right by you and not put a drop of rain on your head.

Part of navigating a boat is going around storms - no need to get wet unnecessarily. That's the role of the captain.

Creating the plan. Navigating the storms - and ending up at the destination.

In business, there's also a plan. But unlike a boat with a rudder and propulsion, there isn't a mechanical way to translate the plan into action.

In business, we use policies.

Policies are equal parts of what we will do and what we won't.

They're a communication tool.

Of all the infinite possibilities, here are the lines our business will work within.

Lines to work within… not a list of exact steps.

They're way markers.

In cybersecurity policies…

  • Do apply software patches within 14 days.
  • Don't share passwords and logins between people.

“How are we going to achieve this?” is of no concern.

But remember, policies need wiggle room for creativity - to complete the plan and reach the destination.

June 7, 2022
1 Minutes Read

Fresh Thoughts to Your Inbox

Fresh perspectives on cybersecurity every Tuesday. Real stories, analytical insights, and a slash through buzzwords.

We'll never share your email.

Related Reads

Empty Mason jar sat on a table

Fresh Thoughts #16: Risk Is Part of Business & Why Certification Is Not the Goal

Here are the 4 ways to deal with the risk of business and everyday life... And why security certifications are a goal....

Subscribe to Fresh Thoughts

Our weekly newsletter brings you cybersecurity stories and insights. The insights that help you cut through the bull.

We'll never share your email.


Fresh Security Support

Your Questions


Fresh Sec Limited

Call: +44 (0)203 9255868