Description
Write an answer for the following question in 500+ words and use the below slides to answer the question
Plagarism should be zero percent
Initial Post
Chapter 13 introduces us to topics regarding Implementing and Maintaining an IT Security Policy Framework. Please review Chapter 13 and outside references and complete the two questions listed below.
1)There are different ways to describe IT Security policy goals and objectives. With regards to IT Security policy goals and objectives, describe what is meant by each of the following:
a) business risk
b) compliance
c) threat vectors
2) Employees who have accepted security training and policies help create a culture that is focused on security awareness. Do you believe that wide acceptance of security policies can result in less security incidents? Why or Why not? Please provide support for your position.
Unformatted Attachment Preview
Purchase answer to see full attachment
Explanation & Answer
Hello, i finished your paper. Attached is the answer.
Sur Name 1
Student’s Name
Professor’s Name
Date
IT Security policy goals and objectives
A business risk is in broad definition is anything that threatens the business ability to create
profits at its target levels. Businesses are exposed to many risks and the success or failure of these
businesses are determined by the efficiency with which the business managers respond to the risks.
In IT, a risk is any possibility for technology failures to disrupt the business such as service outrage
or information security incidents. Examples of IT risks may include malware, human errors,
hardware and software failure, viruses, scam, spam and phishing. In addition to these IT risks,
natural calamities such as fire,...