You have been asked to design a security policy for a corporate information system consisting of on-premises web, application, and database servers.  The database servers store very sensitive data that must be protected. Discuss five important issues that should be addressed in the security policy.

Completing this assignment allowed me to understand the importance of creating a good security policy for any company. In order for a security policy to be effective, it must contain a section(s) on access control, data privacy, and risk management.