An organization implements a set of policies that outline employee responsibilities and expected behaviors regarding information security. What type of security control is this an example of?
Corrective control
Detective control
Preventive control
Directive control