There is general agreement that IT organizations need to implement control functions in the IT infrastructure in order to both improve application performance and to provide enhanced security. There is also general agreement that IT organizations require the capability to set policy in an automated fashion. There is, however, wide disagreement as to what type of control functions need to be implemented, where they need to be implemented, and just how automated and granular the policy capabilities need to be. Explore these issues and learn how to create a company policy and control strategy.