Act as a Chief Information Security Officer (CISO) for a multinational corporation. Draft a comprehensive remote work security policy that addresses zero-trust architecture, BYOD (Bring Your Own Device) vulnerabilities, and social engineering countermeasures. Ensure the policy includes specific protocols for incident response and compliance with GDPR standards.