Security Policies: In our week 3 discussion, we discussed security plan and security policies. These two are dependent on each other. We need a security plan first and then create security policies to implement our security plan. The next question is how security plan is developed? As a designer identify client security needs which is called risk assessment. The needs could be protecting vital data, protecting hardware, protecting locations, protecting business secret, business applications, protecting network from unauthorized users and many more items can be added. Then a risk analysis is done to determine the right amount of security requirements of an organization. After identifying the assets and risk analysis, now is time create security policies. Security policies is a document which governs the network security. Each policy has Statement of Authority, Scope and Implementation. Below is an example of developing a security policy for Acceptable Use. I will discuss ACCEPTABLE USE POLICY in detail.