Consistency of information is ideally maintained by adhering to the best practices and policies. However, statistics show trends of rising threats in information security in global landscape. It leads us to believe that there may be scope for improvement in transforming a good policy on paper into a better practice. This thesis research identifies various points of failure that arise out of improper implementation of a good policy. This research provides basic guidelines for implementation of usable security policies.