University of the Cumberlands Security Awareness Training Discussion

User Generated

naqvr12

Engineering

University of the Cumberlands

Description

Question1 :

Security awareness training is often the first view a typical user has into information security. It’s often required for all new hires. Think of it as the first impression of management’s view of information security. This is management’s opportunity to set the tone. Most individuals want to do a good job, but they need to know what the rules and expected behavior are. That is one of the purposes of a security awareness policy.

Answer the following question(s):

What do you think are the two most important practices that should be incorporated into a security awareness policy?

Why do you rank them so highly?

  1. Requirements: 350 words , APA7 format, 2 additional responses of 150 words approx (will upload content later on after initial posts)
  2. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Question2 :

You are a security professional for a large, private health care organization. Users have access to file and application servers, as well as data storage facilities that contain customer health information and personally identifiable information (PII). Your organization needs to create user access policies and provide them to its employees.

Sean, your manager, asks you to write a report detailing relevant user access policies. He needs you to research a generic template and use that as a starting point from which to move forward.

Explanation & Answer:
2 pages
User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

View attached explanation and answer. Let me know if you have any questions.There you go buddy :D. You can ALWAYS chat me for comments and revisions :).

Question 1:
Security awareness training is often the first view a typical user has into information security. It’s
often required for all new hires. Think of it as the first impression of management’s view of
information security. This is management’s opportunity to set the tone. Most individuals want to
do a good job, but they need to know what the rules and expected behavior are. That is one of the
purposes of a security awareness policy.
Answer the following question(s):
1. What do you think are the two most important practices that should be incorporated into a
security awareness policy?
IT security practices are necessary for every organization to move forward. They
form the basis of all processes and must be in line with the company's primary goals and
security commitments since doing so will be highly beneficial in the long run.
Organizations may adapt to security issues with the help of IT security policies (Change
Management Policy, 2012). For information security to function more effectively, an
organization must have well-established procedures that every employee acknowledges
and follows. Security Awareness and Training Policy and Change Management
Policy are, I believe, the two most important practices that need to be included in a
security awareness policy.
These policies may enhance an organization's overall security, resulting in fewer
security incidents impacting the business. Employees can also turn to these procedures
for handling security issues as necessary. A thorough set of IT security policies also helps
in preparing businesses for audits by guaranteeing proper regulatory compliance.
Additionally, it promotes stakeholder and user responsibility inside an organizati...

Related Tags