Policy Framework – Savvy Essay Writers | savvyessaywriters.net

Humanities

Policy Framework – Savvy Essay Writers | savvyessaywriters.net

Place your order now – Savvy Essay Writers

A. “Policy Implementation Issues” Please respond to the following:

  1. Describe the basic elements of human nature and how they affect information security policy development and impact information security policy implementation issues.
  2. Propose at least three ways that organizations can overcome these policy development and implementation issues.

B. “ISO / IEC 27000 Series and NIST” Please respond to the following:

  1. Determine the part of an IT security program that you believe is the most challenging for organizations to implement. Justify your reasoning.
  2. Analyze the business considerations, information assurance, and information systems security considerations that impact the area that you identified as being most challenging to implement. Provide at least two recommendations for IT management to implement to align the information assurance and security considerations with the business goals.

C. “Principles for Policy and Standards Development” Please respond to the following:

  1. Select two principles for policy and standards development (accountability, awareness, ethics, multidisciplinary,

    proportionality
    , integration, defense-in-depth, timeliness, reassessment, democracy, internal control, adversary, least privilege, continuity, simplicity, and policy-centered security). Examine how these principles would be the same and different for a health care organization and a financial organization.
  2. Determine which type of organization would have the most difficulty implementing the principles you selected. Support your answer.

D. “OCTAVE” Please respond to the following:

  1. From the website http://www.cert.org/octave/ provide a brief explanation of the Operationally, Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE) methods. Explain how they are beneficial for organizations developing their IT risk management approaches.
  2. From the e-Activity, explain how the size of the organization impacts the OCTAVE method utilized. Determine the factors that large organizations, as opposed to small organizations, are most concerned with.

Write a three to five (2-3) page paper

Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar

Websites
do not qualify as quality resources

PLACE YOUR ORDER NOW

Savvy Essay Writers