In response to related issues of cyber crime and personal information protection, this study adopts the literature comparison method to explore the omissions and defects of Taiwan's policies. Through a comprehensive survey of the developments of national information security policy of other countries, those who put forward conclusions and suggestions like information security vulnerabilities through research deserve reward plans. Hence, the relevant departments in charge may be able to strengthen the defense loopholes. For the sake of the development of the information security industry, marketing strategies should be strengthened. In light of the Taiwan's small and medium enterprises without redundancy budget in information security defense, it is advisable to joins hands with the information security industry to provide free defense. Besides, in order to demonstrate the government's determination of cultivating information security talents, a long-term career development strategy for network security experts should be carried out. Establishing a link with industrial practices will be conducive to resolving the lack of information security elite cultivation and providing employment opportunities as well. Critical information Infrastructure protection requires the enhancement of cross-sectoral horizontal communication and cross-disciplinary drills on a regular basis to ensure the viability of ongoing operation plans.