Scan policies are what define the values that are used by Nessus to define how a scan will be run. These scan policies can be as simple as the three steps required to complete the simple scan wizard setup or complicated to the extent that each unique plugin is defined and custom authentication and operational configurations are applied.