integrating several aspects of information security/assurance

Content Type

User Generated

User

qnaaldat

Subject

Computer Science

School

week

Description

Part 1

Our class focuses on integrating several aspects of information security/assurance. Part of an overall integrated approach to achieving a comprehensive information assurance program is compliance management. As you are aware there are a number of government regulations that affect both the public and private sector. Please read Learn the Science of Compliance.pdf. The author makes a strong case for centralized management of IT compliance and the use of software tools to assist in managing compliance programs.

You are the CISO of a large private financial company that is traded on the NY Stock Exchange. You were tasked by the the CIO to develop an IT compliance management program for your organization. What approach would you take to develop such a program? What regulations impact the organization? Would you consider the use of a compliance tool? If so which one and how would you justify the expense?

Remember to cite your sources and to give a complete answer to the questions posed above.

Part 2

Read the Wachovia Case Study located here, http://gilbane.com/case_studies_pdf/CTW_Wachovia_Final.pdf#_Toc88022904.

Now, select five of the most important concepts that you identified that contributed to the success of integration of IT capabilities. Explain why you chose each one.

Tags: week CSIA485 weeklydiscu

User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

Attached.

Running head: INFORMATION ASSURANCE-COMPLIANCE

Information assurance-Compliance
Student’s name
University affiliation

1

INFORMATION ASSURANCE-COMPLIANCE

2

Information assurance-Compliance
PART 1
Approach taken to develop an IT compliance management program
Developing an IT compliance management program will take seven steps that are well
organized and prepared so that to get to an appropriate compliance program. First, document
policy and control; second determine who will have oversight of the program when it is in
place. Third, make a personal screening and access a priority so that to minimize unauthorized
access. After personalization, emphasize on training and communication to improve
communication flow in the whole process (Silverman, 2013). Plan on how auditing will be
done and keep the enforcement consistent all along that will p...

Completion Status:

100%

Review

Review

Anonymous

Excellent! Definitely coming back for more study materials.

Studypool

4.7

Trustpilot

4.5

Sitejabber

4.4

24/7 Homework Help

Stuck on a homework question? Our verified tutors can answer all questions, from basic math to advanced rocket science!

CU Bayesian Networks Discussion

What is the relationship between Naïve Bayes and Bayesian networks? What is the process of developing a Bayesian networks ...

CU Bayesian Networks Discussion

What is the relationship between Naïve Bayes and Bayesian networks? What is the process of developing a Bayesian networks model?

New England College Davids Alleged Industrial Espionage Essay

David Doe is a network administrator for the ABC Company. David is passed over for promotion three times. He is quite voca ...

New England College Davids Alleged Industrial Espionage Essay

David Doe is a network administrator for the ABC Company. David is passed over for promotion three times. He is quite vocal in his dissatisfaction with this situation. In fact, he begins to express negative opinions about the organization in general. Eventually, David quits and begins his own consulting business. Six months after David’s departure, it is discovered that a good deal of the ABC Company’s research has suddenly been duplicated by a competitor. Executives at ABC suspect that David Doe has done some consulting work for this competitor and may have passed on sensitive data. However, in the interim since David left, his computer has been formatted and reassigned to another person. ABC has no evidence that David Doe did anything wrong.

4 pages

1735163 Inferential Statistics Connection

As a software developer, one has to carry out market research for their product. This step is necessary to determine what ...

1735163 Inferential Statistics Connection

As a software developer, one has to carry out market research for their product. This step is necessary to determine what features potential users ...

integrated project

integrated project

13 pages

Network Security

The demand for network security is increasing dramatically day by day. Along with this demand, more techniques have been p ...

Network Security

The demand for network security is increasing dramatically day by day. Along with this demand, more techniques have been proposed to achieve the ...

University of the Cumberlands Operational Excellence Reflection Paper

Assignment:Provide a reflection of at least 500 words (or 2 pages double spaced) of how the knowledge, skills, or theories ...

University of the Cumberlands Operational Excellence Reflection Paper

Assignment:Provide a reflection of at least 500 words (or 2 pages double spaced) of how the knowledge, skills, or theories of this course have been applied, or could be applied, in a practical manner to your current work environment. If you are not currently working, share times when you have or could observe these theories and knowledge could be applied to an employment opportunity in your field of study. Requirements:Provide a 500 word (or 2 pages double spaced) minimum reflection.Use of proper APA formatting and citations. If supporting evidence from outside resources is used those must be properly cited.Share a personal connection that identifies specific knowledge and theories from this course.Demonstrate a connection to your current work environment. If you are not employed, demonstrate a connection to your desired work environment. You should NOT, provide an overview of the assignments assigned in the course. The assignment asks that you reflect how the knowledge and skills obtained through meeting course objectives were applied or could be applied in the workplace.

Similar Content

CSIS 408 Liberty University Computer Science Programming Project

CSIS 408 PROGRAMMING ASSIGNMENT 1-5 GRADING RUBRIC Criteria Levels of Achievement Content 70% Logic Advanced 90-100% (...

write a breif summry about Ch6 section 7

Chapter 6 The Link Layer and LANs A note on the use of these Powerpoint slides: We’re making these slides freely availab...

Fundamentals of Data and Signals

You are working for a company that has a network application for accessing a database of corporate profiles. From your com...

Mini Research Paper

Chapter 9 Microsoft Windows Network Securityhttps://technet.microsoft.com/en-us/security/hh535726.aspxINTRODUCTIONState th...

University of Maryland Global Campus Cybersecurity Essay

Please write a paragraph critique to each attachment please...

Need help with computer science and an Assignment about the scheduling algorithm used in the Linux operating system

Discuss the scheduling algorithm used in the Linux operating systemNeed 250 Words with References & APA citation...

Computer Assigmet Excel

Database Management Systems (DBMS) at the workplace help manage the fundamental aspects of the database and manage user au...

Nav Is Discussion

Action Plan and Impacts on Creating Risk Mitigation Plan Every project needs an action plan for better budgeting, allocati...

Related Tags

software engineering networking File Source parity bits technology value Software Testing technology data integration Data warehouse WAN Implementation information technology

Homework help

Our tutors provide high quality explanations & answers.

Post question

CU Bayesian Networks Discussion

What is the relationship between Naïve Bayes and Bayesian networks? What is the process of developing a Bayesian networks ...

CU Bayesian Networks Discussion

What is the relationship between Naïve Bayes and Bayesian networks? What is the process of developing a Bayesian networks model?

New England College Davids Alleged Industrial Espionage Essay

David Doe is a network administrator for the ABC Company. David is passed over for promotion three times. He is quite voca ...

New England College Davids Alleged Industrial Espionage Essay

David Doe is a network administrator for the ABC Company. David is passed over for promotion three times. He is quite vocal in his dissatisfaction with this situation. In fact, he begins to express negative opinions about the organization in general. Eventually, David quits and begins his own consulting business. Six months after David’s departure, it is discovered that a good deal of the ABC Company’s research has suddenly been duplicated by a competitor. Executives at ABC suspect that David Doe has done some consulting work for this competitor and may have passed on sensitive data. However, in the interim since David left, his computer has been formatted and reassigned to another person. ABC has no evidence that David Doe did anything wrong.

4 pages

1735163 Inferential Statistics Connection

As a software developer, one has to carry out market research for their product. This step is necessary to determine what ...

1735163 Inferential Statistics Connection

As a software developer, one has to carry out market research for their product. This step is necessary to determine what features potential users ...

integrated project

integrated project

13 pages

Network Security

The demand for network security is increasing dramatically day by day. Along with this demand, more techniques have been p ...

Network Security

The demand for network security is increasing dramatically day by day. Along with this demand, more techniques have been proposed to achieve the ...

University of the Cumberlands Operational Excellence Reflection Paper

Assignment:Provide a reflection of at least 500 words (or 2 pages double spaced) of how the knowledge, skills, or theories ...

University of the Cumberlands Operational Excellence Reflection Paper

Assignment:Provide a reflection of at least 500 words (or 2 pages double spaced) of how the knowledge, skills, or theories of this course have been applied, or could be applied, in a practical manner to your current work environment. If you are not currently working, share times when you have or could observe these theories and knowledge could be applied to an employment opportunity in your field of study. Requirements:Provide a 500 word (or 2 pages double spaced) minimum reflection.Use of proper APA formatting and citations. If supporting evidence from outside resources is used those must be properly cited.Share a personal connection that identifies specific knowledge and theories from this course.Demonstrate a connection to your current work environment. If you are not employed, demonstrate a connection to your desired work environment. You should NOT, provide an overview of the assignments assigned in the course. The assignment asks that you reflect how the knowledge and skills obtained through meeting course objectives were applied or could be applied in the workplace.