CSIA360 University of Maryland State Government IT Security Policies Analysis

Anonymous

Question Description

For this research based report, you will perform a comparative analysis that examines the strengths and weaknesses of two existing IT Security Policies published by state governments (agencies and offices of the executive branch under the leadership of the state governors). You may choose any two states’ IT Security Policies from the list published by the Multi-State Information Sharing and Analysis Center (MSISAC). (See item #1 under Research.) Your analysis must include consideration of best practices and other recommendations for improving cybersecurity for state government information technology operations (state agencies and offices). Your paper should also address the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices?

Unformatted Attachment Preview

CSIA 360: Cybersecurity in Government Organizations Project 5: Compare / Contrast Two State Government IT Security Policies For this research based report, you will perform a comparative analysis that examines the strengths and weaknesses of two existing IT Security Policies published by state governments (agencies and offices of the executive branch under the leadership of the state governors). You may choose any two states’ IT Security Policies from the list published by the Multi-State Information Sharing and Analysis Center (MSISAC). (See item #1 under Research.) Your analysis must include consideration of best practices and other recommendations for improving cybersecurity for state government information technology operations (state agencies and offices). Your paper should also address the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices? Research: 1. Select two state government IT Security Policies. Use the list at https://www.cisecurity.org/partnersstate-government/ (if you encounter a broken link, you may search for that state’s policy or choose a different state). 2. Download and review your selected state governments’ IT Security Policy documents. 3. Develop five or more points which are common across the two documents. (Similarities) 4. Identify and review at least three unique items in each document. (Differences) 5. Research best practices for IT Security and/or IT Security Policies for state governments. Here are several sources which you may find helpful: a. https://www.nist.gov/cyberframework/perspectives/state-local-tribal-and-territorialperspectives b. https://www2.deloitte.com/insights/us/en/industry/public-sector/nascio-surveygovernment-cybersecurity-strategies.html c. https://www2.deloitte.com/content/dam/insights/us/articles/4751_2018-Deloitte-NASCIOCybersecurity-Study/DI_2018-Deloitte-NASCIO-Cybersecurity-Study.pdf 6. Using your research and your comparison of the two policy documents, develop an answer to the question: Why should every state government have an IT security policy for state agencies and offices under the state’s executive branch? Write: Write a three to five page research based report in which you summarize your research and discuss the similarities and differences between the two IT security policy documents. You should focus upon clarity and conciseness more than length when determining what content to include in your paper. At a minimum, your report must include the following: 1. An introduction or overview of IT Security Policies for the executive branch of state governments (covering state agencies and offices in the executive branch including the governor’s office). Explain Copyright ©2019 by University of Maryland University College. All Rights Reserved CSIA 360: Cybersecurity in Government Organizations 2. 3. 4. 5. 6. the purpose of an IT security policy and how it is used. Answer the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices? (Make sure that you address the importance of such strategies to small, resource-poor states as well as to large or wealthy states.) A separate section in which you discuss the common principles and policy sections / statements (similarities) found in both IT security policy documents. A separate section in which you discuss the unique aspects of the first state’s IT security policy document. A separate section in which you discuss the unique aspects of the second state’s IT security policy document. A section in which you discuss your evaluation of which state government has the better of the two IT security policy documents. You should also present best practice based recommendations for improvements for both IT security policy documents. (Note: you may have different recommendations for the individual policies depending upon the characteristics of each document.) Answer the question: why should every state in the nation have a comprehensive IT security policy for state agencies and offices? A separate section in which you summarize your research and recommendations. Submit For Grading Submit your work in MS Word format (.docx or .doc file) using the Project 5 Assignment in your assignment folder. (Attach the file.) Additional Information 1. Consult the grading rubric for specific content and formatting requirements for this assignment. 2. Your 3-5 page research based report should be professional in appearance with consistent use of fonts, font sizes, margins, etc. You should use headings and page breaks to organize your paper. 3. Your paper should use standard terms and definitions for cybersecurity. See Course Content > Cybersecurity Concepts Review for recommended resources. 4. The CSIA program recommends that you follow standard APA formatting since this will give you a document that meets the “professional appearance” requirements. APA formatting guidelines and examples are found under Course Resources > APA Resources. An APA template file (MS Word format) has also been provided for your use CSIA_Basic_Paper_Template(APA_6ed,DEC2018).docx. 5. You must include a cover page with the assignment title, your name, and the due date. Your reference list must be on a separate page at the end of your file. These pages do not count towards the assignment’s page count. Copyright ©2019 by University of Maryland University College. All Rights Reserved CSIA 360: Cybersecurity in Government Organizations 6. You are expected to write grammatically correct English in every assignment that you submit for grading. Do not turn in any work without (a) using spell check, (b) using grammar check, (c) verifying that your punctuation is correct and (d) reviewing your work for correct word usage and correctly structured sentences and paragraphs. 7. You are expected to credit your sources using in-text citations and reference list entries. Both your citations and your reference list entries must follow a consistent citation style (APA, MLA, etc.). Copyright ©2019 by University of Maryland University College. All Rights Reserved ...
Purchase answer to see full attachment

Tutor Answer

SajemTop
School: University of Virginia

Attached.

Running head: IT SECURITY POLICY

1

IT Security Policy
Student’s Name:
Instructor’s Name:
Course:
Date:

IT SECURITY POLICY

2

Introduction
Information security policy refers to the rules and regulations in a state that govern all the
individuals obtaining and using the IT resources and assets of that state (Dunham, 2018). The
technology is advancing gradually, and information is stored digitally. It is, therefore, essential to
secure this information to prevent unauthorized people from altering it. People at different
locations in a state share information through the internet. It is a fast and effective method of
exchanging information. However, the network through which the information is being shared
should be secured to prevent man-in-the-middle attacks.
All the small, resource-poor, and wealthy states should have IT security policies to ensure
that they protect the data and the assets that they have. Having documented IT policies is vital so
that all the workers of the state can understand and adhere to the rules. According to “The
importance of IT policy,” the policies should have been easy to comprehend and have flexibility.
The threats to the IT security keep changing, and thus, the security policy should be flexible enough
so that amendments can be done. The security policies describe the solutions to specific threats to
ensure that a state is in a position to eliminate the risks in advance.
It is, therefore, important that every state has documented IT security policies and that the
employees are aware of them. It is a strategy that protects the state’s sensitive information, which
would be a significant drawback if accessed by unauthorized personnel.
The states to be used in the discussion are South Dakota Fusion Center and the Florida Department
of Health.
Similarities between the IT secur...

flag Report DMCA
Review

Anonymous
I was on a very tight deadline but thanks to Studypool I was able to deliver my assignment on time.

Anonymous
The tutor was pretty knowledgeable, efficient and polite. Great service!

Anonymous
Heard about Studypool for a while and finally tried it. Glad I did caus this was really helpful.

Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4
Similar Questions
Related Tags

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors