Discussion Post
a) If the Enterprise Policy Review Committee is not open to the approach that Mike and Iris want to use for structuring lnfoSec policies into three tiers, how should Mike and Iris proceed?
b) Should the CISO (Iris) be assessing HR policies? Why or why not?
Second under Ethical Decision Making, answer the following:
a) Has Mike broken any laws in representing Iris' policy work as his own?
b) Has Mike committed an ethical lapse in doing so, or is he just being inconsiderate?
The response must include a reference list. One-inch margins, double-space, Using Times New Roman 12 pnt font and APA style of writing and citations.