Assignment 4: Information Security Governance

Nov 27th, 2014
Anonymous
Category:
Engineering
Price: $35 USD

Question description

Information security management and governance are not simply implemented tasks within organizations. An information security governance program is a program that must be thoroughly planned, include senior-level management involvement and guidance, be implemented throughout the organization, and be updated and maintained. The International Organization for Standards (ISO) and the International Electrotechnical Commission (IEC) has created information security governance standards. Review the information security governance information provided by ISACA, located at http://www.isaca.org/Knowledge-Center/Research/Documents/InfoSecGuidanceDirectorsExecMgt.pdf.

Write a 3-5 page paper in which you:

  1. Define the information security governance and management tasks that senior management needs to address.
  2. Describe the outcomes and the items that will be delivered to the organization through the information security program.
  3. Develop a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.
  4. Develop a checklist of items that needs to be addressed by senior management, including priorities and needed resources.
  5. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources. 

Your assignment must follow these formatting requirements:

  • Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; references must follow APA or school-specific format. Check with your professor for any additional instructions.
  • Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required page length. 

The specific course learning outcomes associated with this assignment are:

  • Examine the principles requiring governance of information within organizations.
  • Use technology and information resources to research legal issues in information security.
  • Write clearly and concisely about information security legal issues and topics using proper writing mechanics and technical style conventions.
Click here to view the grading rubric for this assignment
This is the Rubic

Points: 80

Assignment 4: Information Security Governance

Criteria

Unacceptable

Below 60% F

Meets Minimum Expectations

60-69% D

Fair

70-79% C

Proficient

80-89% B

Exemplary

90-100% A

1. Define the information security governance and management tasks that senior management needs to address.

Weight: 15%

Did not submit or incompletely defined the information security governance and management tasks that senior management needs to address.

Insufficiently defined the information security governance and management tasks that senior management needs to address.

Partially defined the information security governance and management tasks that senior management needs to address.

Satisfactorily defined the information security governance and management tasks that senior management needs to address.

Thoroughly defined the information security governance and management tasks that senior management needs to address.

2. Describe the outcomes and the items that will be delivered to the organization through the information security program.
Weight: 20%

Did not submit or incompletely described the outcomes and the items that will be delivered to the organization through the information security program.

Insufficiently described the outcomes and the items that will be delivered to the organization through the information security program.

Partially described the outcomes and the items that will be delivered to the organization through the information security program.

Satisfactorily described the outcomes and the items that will be delivered to the organization through the information security program.

Thoroughly described the outcomes and the items that will be delivered to the organization through the information security program.

3. Develop a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

Weight: 25%

Did not submit or incompletely developed a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

Insufficiently developed a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

Partially developed a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

Satisfactorily developed a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

Thoroughly developed a list of at least five (5) best practices for implementing and managing an information security governance program within an organization.

4. Develop a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

Weight: 25%

Did not submit or incompletely developed a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

Insufficiently developed a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

Partially developed a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

Satisfactorily developed a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

Thoroughly developed a checklist of items that needs to be addressed by senior management, including priorities and needed resources.

5. 3 references

Weight: 5%

No references provided

Does not meet the required number of references; all references poor quality choices.

Does not meet the required number of references; some references poor quality choices.

Meets number of required references; all references high quality choices.

Exceeds number of required references; all references high quality choices.

6. Clarity, writing mechanics, and formatting requirements

Weight: 10%

More than 8 errors present

7-8 errors present

5-6 errors present

3-4 errors present

0-2 errors present


Tutor Answer

(Top Tutor) Studypool Tutor
School: UCLA
PREMIUM TUTOR

Studypool has helped 1,244,100 students
Ask your homework questions. Receive quality answers!

Type your question here (or upload an image)

1821 tutors are online

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors