Governance
Unlock the complete study guide + 1,040 practice questions across 16 full exams.
Bundled into the existing Certified in Cybersecurity premium course — no separate purchase.
Included in this chapter:
- The governance document hierarchy
- Mandatory versus discretionary, and reading the type from a scenario
- Internal versus external: regulations, laws, and exam patterns
The governance document types: who writes them and whether they bind
| Attribute | Policy | Standard | Procedure | Guideline | Regulation / Law |
|---|---|---|---|---|---|
| Source | Internal (leadership) | Internal | Internal | Internal | External (government) |
| Mandatory? | Yes | Yes | Yes | No (discretionary) | Yes (legally binding) |
| Level of detail | High-level, broad | Specific setting/parameter | Step-by-step | Recommended practice | Varies, externally set |
| Answers which question | Why / what (intent) | Exactly which | How (steps) | What we suggest | What the law requires |
| Example | Acceptable use intent | Min 12-char passwords | Account-offboarding steps | Recommended hardening tips | HIPAA, GDPR |
Decision tree
Cheat sheet
Unlock with Premium — includes all practice exams and the complete study guide.