Question

In: Computer Science

As the CISO, you are responsible for development and implementation of various security policies to ensure...

As the CISO, you are responsible for development and implementation of various security policies to ensure the protection of company sensitive information and systems. There are different levels of policy from executive level to issue specific and system level policies.

Discuss how the program policy leads to the other types of policies. Provide at least two examples of issue specific policies and two system specific (codified) policies. Include at least one research reference and associated in-text citation using APA standards. In your replies to your peers discussing the examples given and how they can reduce risk to the corporate network.

Solutions

Expert Solution


Related Solutions

Managing IT security and risks Information security is critical in the development and implementation of information...
Managing IT security and risks Information security is critical in the development and implementation of information systems in organizations. Assume that you are developing a customer relationship management system for Morita Loan, list five methods that you can use to protect the data in such a system and discuss how you can implement these five means for information security.
As a CISO for a major online streaming company, what procedures would you implement to ensure...
As a CISO for a major online streaming company, what procedures would you implement to ensure minors did not have access to explicit material? What type of technologies would you recommend?
How can you Manage the development and implementation of unit goals, objectives, policies, specifications, procedures and...
How can you Manage the development and implementation of unit goals, objectives, policies, specifications, procedures and priorities? Please explain.
You have been employed by Challenger Constructions as their first Chief Information Security Officer (CISO). You...
You have been employed by Challenger Constructions as their first Chief Information Security Officer (CISO). You have been tasked by the Board to conduct a review of the company’s risks and start to deploy security policies to protect their data and resources. You are concerned that the company has no existing contingency plans in case of a disaster. The Board indicated that some of their basic requirements for contingency planning include: A Recovery Time Objective (RTO) of 4 hours A...
You have been employed by Challenger Constructions as their first Chief Information Security Officer (CISO). You...
You have been employed by Challenger Constructions as their first Chief Information Security Officer (CISO). You have been tasked by the Board to conduct a review of the company’s risks and start to deploy security policies to protect their data and resources. You are concerned that the company has no existing contingency plans in case of a disaster. The Board indicated that some of their basic requirements for contingency planning include: A Recovery Time Objective (RTO) of 4 hours A...
During an onsite visit with the Chief Information Security Officer (CISO), he tells you how upset...
During an onsite visit with the Chief Information Security Officer (CISO), he tells you how upset he is that they found Telnet in use by their network administrators. The reason was that the version of the router and switch operating system currently in use does not support security protocols. You assure the CISO that the upgrade will resolve that problem among other weaknesses he might be unaware of. you will act as the network administrator. Suggest some other network security...
You are the project director responsible for creating an implementation timeline that addresses the training and...
You are the project director responsible for creating an implementation timeline that addresses the training and go-live activities for a nursing documentation system that will be implemented on 20 units and involve 350 users. Determine whether the implementation will be staggered or occur simultaneously on all units and provide your rationale.
Imagine you are the Newly hired Security Personnel responsible for creating a security and privacy plan...
Imagine you are the Newly hired Security Personnel responsible for creating a security and privacy plan for your organization. The purpose of your plan is to describe standards that help ensure the privacy and integrity of the many different facets of a network. What policies will you include in your plan that protects the hardware and physical aspects of the network and; Identify hardware areas that need to be secured.
As a tax professional, you are responsible for using every tool at your disposal to ensure...
As a tax professional, you are responsible for using every tool at your disposal to ensure your client communicates effectively with the IRS. Sometimes valuable guidance can come from an analysis of documents published by the IRS. Review the sample Chief Counsel Memorandum and the IRS Electronic Reading Room. Discuss the importance of structuring a response memo to the IRS similar to the Chief Counsel Memorandum.
Imagine this is your first day as Senior Chief Information Security Officer (CISO) of Company A....
Imagine this is your first day as Senior Chief Information Security Officer (CISO) of Company A. The Chief Financial Officer (CFO) calls you wondering what should have been done differently during a recent incident involving your predecessor. The following incidents recently occurred and were closed out without any alert to senior staff or the CFO. The Chief Financial Officer’s admin reported that their laptops were performing erratically and many popup screens kept appearing while browsing the Internet. Upon inspection, it...
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT