To make sure employees comply with security policies and procedures, follow these best practices:

1. **Write understandable documents**: Tailor the documents to the size and nature of the company, using language and formats that employees are familiar with.

2. **Review and approval**: Send documents for review to relevant personnel and ensure they are approved by an authorized person to gain commitment and authority.

3. **Training**: Train employees on how to perform new activities or use new technology as defined by the documents to prevent errors or avoidance.

4. **Awareness**: Make employees aware of the importance of these documents to prevent negative attitudes and ensure understanding of their responsibilities.

5. **Regular updates**: Keep documents updated to maintain relevance and compliance.

6. **Compliance review process**: Set up a process for compliance review, defining how it must be performed, by whom, and how often, and document these processes.

7. **Technology and organization**: Use available technology to manage and assess compliance with policies, and organize processes for defining, approving, publishing, and reviewing policies.

8. **Employee responsibilities**: Ensure employees understand their responsibilities, such as protecting information assets, participating in training, reporting non-compliance, and cooperating with audits.

By implementing these practices, you can enhance compliance with security policies and procedures.