Research Paper

profiletkilh1
ResearchProposaandOutline.docx

SECURITY POLICIES OF BUSINESSES AND IMPLEMENTATION ISSUES 4

Trevor Henry

Liberty University

CSCI 561

Professor Humphries

11/08/2020

Security Policies of Businesses and Implementation Issues

Research Objectives

· Briefly describe the concepts of information systems security in protecting information. Describe how security policies are made, utilized, and how they are important to any organization.

· Discuss the different business drivers and controls useful in an organization to ensure security. Discuss the three types of controls which are physical, administrative, and technical controls.

· Discuss the various policies that protect the company from liability damage caused by various factors such as employees.

· Discuss the various laws that are useful in information security systems of an organization.

Questions

1. What is the difference between information systems and information security? What are the challenges of not implementing security policies, dangers that may arise, and dangers of implementing the wrong policies?

2. What is the relationship between the security controls and information security policies and how do they ensure lower risk exposure, minimize liability, and ensure confidentiality of data?

3. Why were the compliance laws formulated, for whom, and which of the controls handle private data?

4. Which challenges do business faces in the various dominions of IT and which policies are implemented to mitigate the risks?

References

1. Cram, W. A., Proudfoot, J. G., & D’arcy, J. (2017). Organizational information security policies: a review and research framework. European Journal of Information Systems, 26(6), 605-641.

2. Johnson, R., & Easttom, C. (2020). Security policies and implementation issues. Jones & Bartlett Publishers.

3. Warkentin, M., & Willison, R. (2009). “Behavioral and policy issues in information systems security: the insider threat”. European Journal of Information Systems, 18(2), 101-105.

References

Cram, W. A., Proudfoot, J. G., & D’arcy, J. (2017). Organizational information security policies: a review and research framework. European Journal of Information Systems, 26(6), 605-641.

Johnson, R., & Easttom, C. (2020). Security policies and implementation issues. Jones & Bartlett Publishers.