In: Operations Management
Address the following questions on ISO standards on information security management and ethics.
-Describe the Plan-Do-Check-Act process.
-What does this process accomplish?
-Discuss the difference between law and ethics; Research the Sarbanes-Oxley Act of 2002 and discuss how it has impacted information security in an organization.
a) Plan-Do-Check-Act is a four step continous process for carying out a change in the project. The four steps in it can be explained below.
b) It is a process that is never ending and is aimed at continous improvement of people and processes. The whole process has a low risk as any planned change is first carried out on a smaller scale.PDCA supports the principles of Kaizen too. Kaizen also focusses on bringing out small and useful changes. The PDCA Cycle provides a framework and structure for identifying improvement opportunities and evaluating them objectively.