Business needs-information security, Computer Network Security

Assignment Help:

BUSINESS NEEDS

Information security performs four main functions for an organization.

1. Protects the ability of organization to function.
2. Enables safe operation of applications implemented on organization’s its IT systems.
3. Protects data which the organization collects and uses.
4. Safeguards technology assets in use at the organization

Both general management and IT management responsible for implementing information security which protects the organization’s ability to function. Information security is management issue and people issue both as they perceive it to be a technically complex task; actually implementing information security has much to do with management than with technology.

Each and every organization should address information security in the terms of business impact and cost instead of focusing on security as a technical problem.

Enabling the Safe Operation of Applications

Modern organization is required s to create an environment which safeguard applications by using the organization’s IT systems. Like operating system (Windows/Unix/Linux etc.,), electronic mail, and instant messaging (IM) applications. Management should continue to oversee infrastructure once in place—not defer to IT department.

Protecting Data that Organizations Collect and Use

Without data, an organization loses the record of transactions and ability to deliver value to customers. Both protecting data in motion and data at rest are significant aspects of information security.

 Safeguarding Technology Assets in Organizations

To perform effectively, organizations should posses secure infrastructure services based on size and scope of enterprise. For example, a small business can get by using an e- mail service provided by an ISP and augmented with the personal encryption tool. Additional security services may be required as organization expands. For instance, organizational growth could lead to the requirement of public key infrastructure (PKI), an integrated system of software, legal agreements and encryption methodologies which can be used to support entire information infrastructure of an organization. More robust solutions may be required to replace security programs the organization has outgrown.


Related Discussions:- Business needs-information security

Selecting a risk control strategy, Selecting a Risk Control Strategy Risk...

Selecting a Risk Control Strategy Risk controls involve selecting one of the 4 risk control strategies for every vulnerability. The flowchart is shown in the figure given below

Direct indexing, DIRECT INDEXING It is less usually known method. It i...

DIRECT INDEXING It is less usually known method. It is possible only is cases where protocols address are given from a compact range. In the diagram below an example of direct

Describe how ipsec provides data source authentication, Question: (a) ...

Question: (a) Describe how IPSec provides data source authentication. (b) Which protocol can be used to provide limited traffic analysis confidentiality? Why is it "limite

Secure routing protocols for wireless sensor networks, Q. Secure routing Pr...

Q. Secure routing Protocols for Wireless Sensor Networks? A secure routing information protocol enables effective implementation of authentication and integrity checking defens

Distinguish between authorization and authentication, Question : (a) D...

Question : (a) Distinguish between authorization and authentication. (b) SSO (Single Sign On) implies a user logs in once and can access resources for a defined period of

Explain symmetric and asymmetric encryption system, Question 1: (a) Dif...

Question 1: (a) Differentiate between symmetric and asymmetric encryption system. (b) Describe how a digital signature is created. (c) Explain briefly what SSL (secure so

Introduction to risk management and its component, INTRODUCTION TO RISK MAN...

INTRODUCTION TO RISK MANAGEMENT Risk management is the procedure of identifying and controlling risks facing an organization. Risk management is the discipline which is employed

Fragmentation format, FRAGMENTATION Fragmentation information is kept...

FRAGMENTATION Fragmentation information is kept in different extension header.  Every fragment has base header and fragmentation header. Whole datagram including original hea

Implement database security, Question: (a) Describe fully with example ...

Question: (a) Describe fully with example the two access control methods available to implement database security. (b) Discuss why database statistics (meta data) provide es

#title., differentiate between internet and www

differentiate between internet and www

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd