As a policy maker, instead of providing cybersecurity requirements for each different aspect of the company such as education, training, technology, ect. I would create policies that are company wide. These would include cellphone policies, email policies, and social media policies. In these it would include that work phones, emails, and social media accounts are to only be used for work related things. Also accounts prior to working with the company, it will be imposed that they would have to clear any inappropriate pictures, tweets, comments. This would help provide an insurance on the companies that their employee’s will be rational and loyal to the company. Also this would help any companies linked to the government by having the employee’s not exploit and possibly harm the company. Therefore, creating these policies will be enforced and there will be consequences to any company that does not comply with these policies. The consequences will be a fine and this fine will continue each year that the companies fail to comply with the policies. Another policy I would put in place is about company WIFI. There would be a private WIFI for all employees when they are at the business building. However, for guests there will be a specific WIFI that they would have to get a password from someone who works there. There will also be restrictions  on what can happen under the guest WIFI. Not many but certain websites won’t be allowed similar to having a school laptop and being restricted on certain websites. This will also help to protect the company.