Reflection Paper

profileMrTooGood
IS.docx
Home>Engineering homework help>Telecommunications Engineering homework help>Reflection Paper

1

Information Security

Student’s Name

Institutional Affiliation

Course

Date

Information security is the practice of protecting information by mitigating information risks. It refers to the techniques or precautions used to prevent unauthorized access to electronic data. Information dangers include unauthorized disclosure, usage, interception, and data loss. Controls for information security are designed to ensure data availability, integrity, and secrecy. Confidentiality, integrity, and availability are the three primary goals of information security. Only authorized individuals have access to confidential data. The inability to update data without permission is referred to as data integrity (BOUZIANI et al., 2022). The ease with which authorized users can access data is referred to as its availability. Many types of information security controls exist, including access control, activity monitoring, data encryption, and firewall protection. Implementing an effective information security program requires a comprehensive approach that includes all three security goals.

Information security includes both physical and cyber security measures. Physical security measures protect information and information systems from threats such as fire, theft, or vandalism. Physical security measures might include security guards, locked doors, and security cameras. Cyber security measures protect information and information systems from electronic threats such as hacking, phishing, or malware (Whitman & Mattord, 2021). Cyber security measures might include firewalls, intrusion detection systems, and encryption.

Information security is a growing concern for organizations as the amount of electronic information continues to grow. Organizations must protect their electronic information from unauthorized access, disclosure, interception, or destruction. Information security is essential because it helps to protect businesses and individuals from data loss or theft and helps organizations ensure the accuracy and completeness of their electronic data (Ng et al., 2021). Therefore, Information security is a critical part of any organization’s overall security posture and should be considered in all aspects of business, from the physical security of facilities to the cyber security of information systems.

References

BOUZIANI, M. M., MERBAH, M. M., TISKAR, M. M., ET-TAHIR, M. A., & CHAOUCH, M. A. (2022). When can we talk about implementing an Information Security Management System, according to ISO 27001?.  Turkish Journal of Computer and Mathematics Education (TURCOMAT)13(2), 394-401. https://turcomat.org/index.php/turkbilmat/article/view/12256

Ng, K. C., Zhang, X., Thong, J. Y., & Tam, K. Y. (2021). Protecting against threats to information security: An attitudinal ambivalence perspective.  Journal of Management Information Systems38(3), 732-764. https://www.tandfonline.com/doi/abs/10.1080/07421222.2021.1962601

Whitman, M. E., & Mattord, H. J. (2021).  Principles of information security. Cengage learning. https://books.google.com/books?hl=en&lr=&id=Hwk1EAAAQBAJ&oi=fnd&pg=PP1&dq=what+is+information+security&ots=VipNeKgXRb&sig=RLNUc635RuhWGhmwFJJ6JSmDq7U