Reference no: EM132299634
Review the security frameworks provided by NIST (SP 800-53), ISO / IEC 27000 series, and COBIT. Assume that you have been hired as a consultant by a medium-sized insurance organization and have been asked to draft an IT Security Policy Framework. You may create and / or assume all necessary assumptions needed for the completion of this assignment.
Write a three to five (3-5) page paper in which you:
Select a security framework
Describe the framework selected
Design the IT Security Policy Framework for the organization
Describe the importance of and method of establishing compliance of IT security controls with U.S. laws and regulations, and how organizations can align their policies and controls with the applicable regulations.
Analyze the business challenges within each of the seven (7) domains in developing an effective IT Security Policy Framework.
Describe your IT Security Policy Framework implementation issues and challenges and provide recommendations for overcoming these implementation issues and challenges.
Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
The Assignment should follow APA 6th edition guidelines:
Title page
Introduction and Conclusion
Level 1 headings to define sections
3–5 pages in length, double spaced, 12 pt Times Roman font
3–5 references cited in the text and a reference list