User Account

All Pages

Review the requirements in federal law to protect privacy

Assignment Help Management Information Sys
Reference no: EM131987184

Assignment: Cybersecurity in Government Organizations

Case Study #1: Are Privacy Impact Assessments (PIA) useful as a risk management tool?

Case Scenario:

A client has asked your cybersecurity consulting firm to provide it with a white paper which discusses the usefulness of Privacy Impact Assessments (PIA) as arisk management tool.The purpose of this white paper is to inform attendees at an inter-agency workshop on writing Privacy Impact Assessments for their IT investments. PIA's are required by the E-Government Act of 2002and must be submitted to the Office of Management and Budget (OMB) each year by agencies as part of their E-Government Act compliance reports. OMB, in turn, forwards a summary of these reports to Congress as part of the administration's E-Government Act Implementation Report. See the Week 1 readings for copies of the legislation and a recent implementation report.

Research:

1. Read / Review the Week 1 readings.

2. Review the requirements in federal law to protect the privacy of individuals (see week 1 readings plus research additional sources).

3. Research how Privacy Impact Assessments are used by Chief Privacy Officers at the federal agency level and in the Executive Office of the President (Whitehouse) to manage risk by ensuring that personally identifiable information is handled in accordance with the requirements of federal law.

4. Find three or more additional sources which provide information about best practice recommendations for managing risks related to privacy and/orensuring the privacy of information processed by or stored in an organization's IT systems and databases. These additional sources can include analyst reports and/ornews stories about recent attacks / threats, data breaches, cybercrime, cyber terrorism, etc. which impacted the privacy of individuals whose information was stored in federal IT systems and databases.

Write:

Write a two to three page summary of your research. At a minimum, your summary must include the following:

1. An introduction or overview of privacy which provides definitions and addresses the laws, regulations, and policies which require federal IT managers to protect the privacy of individuals whose information is processed or stored in federal IT systems. This introduction should be suitable for an executive audience.

2. A separate section which addresses the contents of Privacy Impact Assessments and how they are used to assess and monitor risks associated with personally identifiable information.

3. An analysis of whether or not privacy impact assessments provide useful information to Chief Privacy Officers, agency heads, OMB Staff, White House Staff, Congressional Committees and their staff members, and Members of Congress (Representatives & Senators).

4. A discussion of best practice recommendations for reducing risk by improving or ensuring the privacy of information processed by or stored in an organization's IT systems and databases. These recommendations should be well supported by information from your research.

5. A closing section in which you summarize your research and your best practice recommendations.

Your white paper should use standard terms and definitions for cybersecurity and privacy. The following sources are recommended:

• ISACA Glossary
• Guidelines on Security and Privacy in Public Cloud Computing

Formatting Instructions

Use standard APA formatting for the MS Word document that you submit to your assignment folder. Formatting requirements and examples are found under Course Resources> APA Resources.

Additional Information

1. You are expected to write grammatically correct English in every assignment that you submit for grading. Do not turn in any work without (a) using spell check, (b) using grammar check, (c) verifying that your punctuation is correct and (d) reviewing your work for correct word usage and correctly structured sentences and paragraphs.

2. You are expected to credit your sources using in-text citations and reference list entries. Both your citations and your reference list entries must comply with APA 6th edition Style requirements. Failure to credit your sources will result in penalties as provided for under the university's Academic Integrity policy.

Reference no: EM131987184

Questions Cloud

Prepare the government-wide statement of activities : REQUIRED: Prepare, in appropriate format, the government-wide statement of activities for Cowboy Town for the year 2015
Develop the initial project plan : ISY2004 - Information Systems Project Management - Project charter, including a detailed Scope Statement - Stakeholder Management Strategy
What negative consequences can emerge when vision : What negative consequences can emerge when vision, mission, or values contradict strategy? Name a time where you believe strategy was not aligned with vision
What is stakeholder theory : What is stakeholder theory? How does it drive requirements to spend money on cybersecurity products & services?
Review the requirements in federal law to protect privacy : Review the requirements in federal law to protect the privacy of individuals (see week 1 readings plus research additional sources).
Diversity within the workforce necessarily : Are legal mandates in diversity within the workforce necessarily the most efficient? What other ways can diversity be attained?
Why any company should hire or promote you : Create and include a ONE-PAGE Resume that captures your experiences, knowledge, skills, and capabilities: include work and non-work experiences.
Make adjustments and changes to the schedule : To what extent is the employer expected to make adjustments and changes to the schedule or workplace to accommodate a disabled worker?
Describe supertrends that are driving hp to change : Assess which forces for change are causing HP to undertake major organizational change.Describe supertrends that are driving HP to change.

Reviews

Write a Review

Management Information Sys Questions & Answers

  How it works and where it is applied for message encryption

There are three main types of cryptographic algorithms: (1) secret key, (2) public key, and (3) hash functions. Pick an algorithm for any one of these types (e.g., DES, AES, RSA, MD5) and describe how it works and where it is applied (For example ..

  How has the manuscript deepened my conceptualisation

Overall Assessment of the paper under review - Significance of findings for IT and Business Alignment practice. How has the manuscript deepened my conceptualisation of some aspect of IT and Business Alignment

  Approach to utilize access control in your environment

Propose the key actions that you would take to implement security in order to eliminate single points of failure. Provide a rationale for your response.

  Assess how it governance will improve the effectiveness

Write a detailed plan of action based on life cycle concepts to develop and deploy an ongoing IT compliance process.

  Discuss about the west city council budget proposal

Discuss about the West City Council Budget Proposal.Review your city's information document. Your document includes information about your agency, the citizens of the community, and the employees of the agency.

  What could you have done differently to empathize with them

Define empathy and explain why it is important for effective communication. Share an example of a time when you found it difficult to empathize with someone. How did you handle the situation?

  Expected number of airplanes circling the airport

What would be the expected number of airplanes circling the airport, waiting in queue for clearance to land, if this system were to be used?

  List the three boolean operators the lionsearch accepts

List the three Boolean operators the LionSearch accepts and describe the operation each performs. Explain the difference between the query "information systems" and information systems

  Develop software project management plan for organization

Determine at least three (3) risks that may occur if the requirements engineering process is not properly followed. Speculate on how failing to perform these processes may lead to project failure. Include examples to support your answer.

  How ethics played a role in your choices for including info

You are working with one of the organizations below to create an instructional guide. You will be conducting research and promoting the instructional guide to the organization's board. Your instructional guide should explain the real-world use of ..

  Describe and evaluate the core concepts of data architecture

Describe and evaluate the core concepts of data and information architecture. Construct risk management assessment techniques across the portfolio of the enterprise.

  How could the cyber attack be dettered

A recent malicious cyber attack that cyber deterrence was used . Pre-Emp Deterence CNE Cyber attacks. How could the Cyber Attack be dettered

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd