Hello,
Adam referred to security policy as being an administrative/preventative control whereas I believe it's supposed to be an administrative/deterrent control, yes? It can't prevent you from doing something but it can deter you, with language such as failure to comply can lead to termination etc... Just looking for confirmation that he misspoke in that case.
and just FYI... CISSP is the first course I'm taking with my membership here and I can say so far I'm very happy. Adam is obviously very knowledgeable, well spoken, organized and concise. Excellent! I plan to take many other courses here.
Keep up the great work!
Thanks and Regards,
- David C.