why the resource planning required for security policy

Expert Solution

Security policy is a set of rules enforced by an organisation such that people of the organisation abide the rules regarding the security policies within the organisation.

Elements of security policy are :

Purpose : Purpose refers to the approach of establishing a general approach to security.
Scope :Scope must be to provide a solution that addresses all data programs, systems and facilities.
Security Objectives : The security objectives includes major three aspects i.e. confidentiality, integrity and availability of resources.
Authority and access control policy : Security policy has a hierarchical pattern, a senior manager has enough authority to make a decision what data can be shared and with whom where as a staff at lower level has limited authority.
Classification of resources : The resources can be classified as highly confidential, confidential and public resources. Accordingly the security and access of resources must be planned.
Resource support and recovery : A strong resource recovery system must be designed with good backup capabilities in-order to prevent loss of data.
Security Awareness :Security awareness must be spread amongst the employees of the organisation via seminars or training programs.
Responsibilities and Duties : The employee of the organisation must be made aware and responsible for their loyalty and duties to ensure the protection of resources of the organisation by abiding security policies of the organisation.

Implementation of effective resource planning can address critical issues such as :

Control the access of data , network and application amongst the organisation employees
The correct allocation of resources for organising events such as training, awareness etc.
Formulation of rules stating the acceptable use of data for it's employees
Decide and divide the responsibilities of management , resource owner and user
Planning of steps that can be taken in-order to prevent data from third party sources
The level of security resources must be allocated and the privacy expectations to be satisfied
Consequences of violation of policies

venereology answered 2 days ago

Part 1: Human Resource Planning Discuss the development of an effective human resource planning process. Be...

Part 1: Human Resource Planning Discuss the development of an effective human resource planning process. Be sure to identify the major players and their functions, components of the process, and suggestions to improve the process. Part 2: Compensation and Rewards Differentiate among direct financial compensation, indirect financial compensation, and non-financial rewards. Be sure to include specific examples of each.

1. Is it a security policy? 2. What type of security policy is described?

1. Is it a security policy? The textbook defines a security policy as, "... an overall general statement produced by senior management (or a selected policy board or committee) that dictates what role security plays within the organization". Is your selected document a security policy per this definition? If not then describe its purpose. Note that some items on this list may not really be security policies per this definition.2. What type of security policy is described? Assuming the document is...

200 words about why it is important for Google to have an effective Human Resource planning...

200 words about why it is important for Google to have an effective Human Resource planning process and then discuss how you would assess the future demand for human resources at Google. Use examples in your discussion to further explain your answer.

human resource planning and forecasting( human resource planning process, forecasting HR requirements, methods to forecast HR...

human resource planning and forecasting( human resource planning process, forecasting HR requirements, methods to forecast HR needs)

discuss why foreign policy is important to the national security of the United States.

What kind of difficulties there might be when creating an information security policy? What is required of them?

Cyber security Security Policy: , write a small antivirus policy for the IT infrastructure and users...

Cyber security Security Policy: , write a small antivirus policy for the IT infrastructure and users in a small business an elementary school You may research anti-virus policies of organizations on the web, please use and cite responsibly. Security Recommendation: Rose Shumba manages the IT security for a school. Given the wide range of people who use the school’s computers, it is challenging for Rose to prevent virus infections. She has installed an anti-virus on each machine and has a...

An enterprise resource planning system (ERP) can be a valuable resource to a company to implement...

An enterprise resource planning system (ERP) can be a valuable resource to a company to implement and evaluate a set of corporate strategies. Comment on advantages and reasons why such a system might fail in some industries.

#1. Why are enterprise resource planning (ERP) systems growing in use and criticality at companies throughout...

#1. Why are enterprise resource planning (ERP) systems growing in use and criticality at companies throughout the world? (Follow-up question for #1) What costs are associated with enterprise resource planning (ERP) systems?

The term “resource nationalism" typically refers to a policy used by a resource rich country to...

The term “resource nationalism" typically refers to a policy used by a resource rich country to ensure maximum revenues from its natural resources. It is thought to have a distinct anti-West character, because anticolonial experience of oil-rich countries makes them think of losing control over their natural resources. Many countries have been thought to benefit immensely if they nationalize their oil and gas resources. There are however concerns that nationalizing oil resources could lead to the “resource curse” phenomenon based...

Question