I have learned throughout my time here in cybersecurity that it is not always about the money spent on protecting servers with fancy gadgets or protection plans.  Often the safety of our data is centered around how well we push our policies. In order to help protect our data, I will be writing and sharing a policy that is for our company.  This policy will be updated and required by every employee to read.  By doing this, I am ensuring that all employees are acknowledging the policies. Next, there will be training that allows employees to put their skills to the test. How to avoid spam mail and hackers.   Hypothetically speaking, if an employee fails, they will be required to redo the training from the beginning until they succeed. 

Some of the policies and procedures that my company will follow will be similar to the CIA Triad, as well as the NIST Cybersecurity Framework. Adopting these ideas will allow for a better understanding and safe approach.