cyber security

profileluckyqloo
W2D1..SJ...docx
Home>Information Systems homework help>cyber security

Respond .. 100 min word count ..

The information security framework is a series of documented, agreed and understood policies, procedures, and process that define how information is managed in business to lower risk and vulnerability and increase confidence in an ever-connected world. Preventing data breaches should be a key priority for any business but breaches happen unexpectedly, and comprehensive plans must be in place to deal with their eventuality. While stakeholders play an important role especially chief information security offers in coordinating data security policies and managing IT risk. All stakeholders play an important role in design information security framework and data breaches. In the large organization all stakeholders’ roles are likely to be present or be represented by one or more individual who would be involved in the ISP but in smaller organization due to the size of the organization, individual would be more likely to be involved in more than one stakeholder role and some of the stakeholder roles may be outsourced.

IT security operation team: - In the event of data breach IT security team are most likely going to fix the issue and remediate vulnerabilities and recover the system from backup

Risk Manager: - Risk managers can ensure various stakeholders are connected in terms of assessing managing and responding to cyber threats. In the event of data breach risk manager evaluate and manage overall risk occurred during the data breach.

CFO: - Concerns range from the potential cost of a cyber event and what the impact could be on the bottom line to the security of the office’s sensitive information.

CEO/Board of Directors: - Accountable for overall business and company performance they perform a fiduciary duty to access and manage cyber risk.

Legal/compliance: As regulations around cyber develop, legal and compliance roles become increasingly important in keeping other stakeholders informed and engaged.

References: -

Woods, A. (2016). How to manage stakeholders during a cyber-attack. Retrieved from https://www.everbridge.com/blog/how-to-manage-stakeholders-during-a-cyber-attack/

Stallings, W. (2018). Understanding Information security governance. Retrieved from http://www.informit.com/articles/article.aspx?p=2931571&seqNum=3