When people have enough information to justify forced rules from jaywalking to corporate policies, there are some measures that can be taken to ensure that ITAM and SAM policies/processes/procedures do not fail.
Policies should be:
- Clear and precise: Policies should be easily understood with precise if/then directives. If there are regulatory reasons for the policy, those reasons should be included as a justification for the said policy. Additionally, if technical support or help desk service may be needed, instructions including who to contact should be easily found.
- Easily accessed: Similar to employee benefits, policies should be retrieved without difficulty.
- Unambiguous about punitive actions: Looking at industry regulations, laws that govern society, and other legal policies, there are always distinct punishments for non-compliance. IT policies should have the same clear-cut reprimand. Without it, IT policies mean little.
Organizations must:
- Review: Like any industry regulation,...