How would you develop and maintain security policies, procedures, and documentation to comply with industry standards?