Reference no: EM133196140 , Length: 1 Pages
1. What is a values statement? What is a vision statement? What is a mission statement? What is a strategic plan? Why are they important? What do they contain?
2. Who are stakeholders? Why is it important to consider their views when planning? According to you, who are the stakeholders of the Information Assurance, MSc. Program? Why?
3. What is InfoSec governance?
4. Why is maintenance needed for information security management systems?
5. How does the SecSDLC differ from the more general SDLC?
6. What is security convergence and why is it significant?
7. Describe top-down strategic planning. How does it differ from bottom-up strategic planning? Which is usually more effective in implementing security in a large, diverse organization?
8.Using a web search engine, find a peer reviewed Journal article with more than 100 citations published that studies the inside versus outside the organization risks.