Compass IT Compliance Blog

IT Security Policies and Procedures: Why You Need Them

Policies and Procedures are two of the words that most employees dread to hear, especially when it comes to IT Security. Why does this phenomenon occur? Is it because people don’t want to be told what to do? Is it because people feel as though they are being “micromanaged” when they have to abide by and comply with policies and procedures? The answer is that it is probably a little of both and for many other reasons that are unique to each specific company. The next obvious question is why do we need to have IT Security policies and procedures? Well, there are many reasons and here are the top 5 reasons, in no particular order: