The three primary areas you will address and develop within your organization’s program include: physical security, information security, and personnel security.
Remember, physical security encompasses safeguarding the all people and prevention of all unauthorized access to the facility (equipment, facilities, material, and documents).
While information security encompasses all potential vulnerabilities and/or threats. This also includes the possible impacts to critical information, data, and resources.
Lastly, personnel security encompasses the requirements in which you hire people who will assist in meeting organizational goals. These individuals must have the ability and background to hire, onboard and train all employees with the appropriate security measures to carry out their functions.