cyber security

Response, disagree, 100 word min.

 The hypothetical organization that I have opted is a machine/home safety product manufacturer who is having its plants based out of European region. Like any other industry, manufacturing is also an area that is exposed to cyber threats and challenges. There is the requirement to protect data, information regarding any trade secrets and prevention of unauthorized access. Usually manufacturing industries will have a small IT team due to IT budget limitations while their focus gets increasingly invested on manufacturing arena. The organization would need to comply with Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS) (Spencer, 2019).

     The organization uses IT governance to have a holistic process while trying to realize opportunities and develop approaches to achieve the goals. The business and IT work together to define and control requirements. Trust is an important factor that needs to be developed by having awareness programs in involving IT with business. Apart from having transparence, return on investment and stakeholder value is the other important aspect. Stakeholders would need to have exposure on IT returns and the improved contribution to the achievement of organizational goal (The National Computing Centre, 2005).

     Data becomes the core driver of business operations and it is handled by various stakeholders including suppliers, distributors and end users. The challenge in handing huge data would need the requirement to have data governance strategies. Since the organizing is having the plants based out of Europe, mandate such as General Data Protection Regulation (GDPR) would need to be complied with. Data governance helps the organization to utilize the data to improve decision making (Marcant, 2017). Each data components gets the owners assigned and thus the responsibility gets shared not just in keeping the data accurate and intact but secure. This in turn in depended on IT governance, thus developing a core governance model for the organization in which the stakeholders become mutually responsible for sharing information and keeping them safe any challenges.

References:

Spencer, T. (2019, October 08). What Is the NIST SP 800-171 and Who Needs to Follow It?. Retrieved from https://www.nist.gov/blogs/manufacturing-innovation-blog/what-nist-sp-800-171-and-who-needs-follow-it-0

The National Computing Centre. (2005, November). IT Governance Developing a successful governance strategy [PDF File]. Retrieved from https://www.isaca.org/Certification/CGEIT-Certified-in-the-Governance-of-Enterprise-IT/Prepare-for-the-Exam/Study-Materials/Documents/Developing-a-Successful-Governance-Strategy.pdf

Marcant, C.(2017, September 8) . 10 Steps To Creating A Successful Data Governance Strategy. Retrieved from https://www.manufacturing.net/operations/article/13227349/10-steps-to-creating-a-successful-data-governance-strategy