HHHHHHHHHHHHHHHH 300 150 150

profilerocksolid
150wordsD2.docx

Cybersecurity and Risk Management

RESPOND TO THIS DISCUSSION 2 IN 150 WORDS

The first article I found when I was browsing relating to risk management to cyber security paradigms will provide a useful backdrop for evaluating the current state of consumer protection in the cyber security environment. The initial paradigm for protecting ICT systems was based on a perimeter defense model. Security focused on tightly regulating the interchange of traffic between systems. Systems were kept closed by default and opened only by exception and under conditions of tight control. This approach to security matched operational norms at the time information systems were siloed these systems were not easily interoperable and thus did not generally exchange traffic. Under these conditions security risks were primarily internal rather than external.

The Second article I noticed regarding cybersecurity is the adoption of a security by design principle and certification frameworks may make it easier to neglect individual users of the Internet in the ongoing efforts to improve cybersecurity. If security concerns can be abated by focusing efforts upstream, then there may be a perception that there is less need to worry about what consumers are doing downstream.

The third article I found was the language used in many national cybersecurity strategies typically is robust, though non-specific. As the examples outlined above illustrate, there is a clear contemplation that individual consumers have a role to play in cybersecurity and possibly even public duties or responsibilities.

Not but not least in the fourth article, I found that the program provides information about how home Internet users and small businesses can protect themselves online. It uses social media, a Web site, email alerts, and partnerships to deliver tips and information about cyber threats.

RELATION BETWEEN CYBER SECURITY AND RISK MANAGEMENT

 The many consumers do not fully understand cyber security issues and do not bother to follow good cyber hygiene, there is a question whether the current consumer base will value a security certification. As indicated, the EC’s proposal for a certification framework does not contemplate mandatory compliance. The expectation is that achieving certification will give ICT service providers a competitive advantage, that is, that consumers will value the certification and thus be willing to pay more for a product or service that is verified.

As an IT MANAGER, discuss how you will use the concepts discussed in the four articles in the management of IT risks within your company.

As an IT Manager, I have to know whether there are any cutting-edge dangers and after that want to order the type of risks and organize them design and execute the preparations which assist to restrict the risks.

References:

 

·       Miedema, T. E. (2018). ENGAGING CONSUMERS IN CYBER SECURITY. Journal Of Internet Law21(8), 3-15.

·       Schell, R. R. (2016). Cyber Defense Triad for Where Security Matters. Communications Of The ACM59(11), 20-23. doi:10.1145/3000606.

·       Alali, M., Almogren, A., Hassan, M. M., Rassan, I. A., & Bhuiyan, M. A. (2018). Improving risk assessment model of cyber security using fuzzy logic inference system. Computers & Security74323-339. doi:10.1016/j.cose.2017.09.011