Policy and Law
The policies of governments, standards bodies, industry organizations and even large companies have an impact on the cybersecurity landscape. The intention of policy and law is to prevent or remediate criminality, abuse and even espionage. We can easily categorize policies as those that are drafted by technical professionals, and are to come degree forward thinking, as opposed to those who are drafted by policy generalists, which are often reactionary, and even defined by media spin.
"ENISA provides recommendations on cybersecurity, supports policy development and its implementation, and collaborates with operational teams throughout Europe"
"Recognizing that the national and economic security of the United States depends on the reliable functioning of critical infrastructure"
Japanese Government's Efforts to Address Information Security Issues; ASEAN-Japan Collaboration on Information Security