Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Research technology security industry standards setting organizations and organi

ID: 3843046 • Letter: R

Question

Research technology security industry standards setting organizations and organizations that provide information technology auditor certifications.

Identify a minimum of three information security standards setting organizations

Identify a minimum of one information technology auditor certification organization

For each organization, the student will identify how long the organization has existed, what the charter of the organization is, how the standards and/or certifications are used to hold companies accountable for controls, opinion on why companies would elect to follow the standards and seek to hire persons holding related certifications.

Explanation / Answer

Information security standards --

1.ISO/IEC27001

These are to establish, implement, operate, monitor,review, maintain and improve the system.As a management standard it doesn't mandate the use of specific controls so much as specify the management processes required to identify controls that are appropriate to the organization.

2.ISO/IEC 27002

ISO/IEC 27002 is an information security standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) as ISO/IEC 17799:2005 and subsequently renumbered ISO/IEC 27002:2005 in July 2007, bringing it into line with the other ISO/IEC 27000-series standards.

3.ISO/IEC 27005

ISO/IEC 27005:2008 provides guidelines for information security risk management.It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the implementation of information security based on a risk management approach.Knowledge of the concepts and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is very important for a complete understanding of ISO/IEC 27005:2008.

Information technology auditor certification organization is ISACA.

Companies would elect to follow the standards and seek to hire persons holding related certifications because -

1.they have knowledge how to work.
2.company make standards which cover up all the details which is needed to analize the person.hence it is beneficial to
follow standard.
3.the one who does not have knowledge about the domain have to teach first and it will affect the quality of work.
4.the certification provides basically all the knowledge about the course.
5.the institutes providing certification also provide a project enclosure to the students so they have idea how to do
work.
6.a knowledgable person is always a better option than a noob.

Related Questions

Research online information, textbooks, and local classes for using the cost man
Question #3682475
Research online several different Asian culture( Japonese, Chinese, Vietnamese,
Question #3468739
Research organizational benefits of using databases and DBMS\'s (see Suggested R
Question #346643
Research paper (minimum 1750 words, APA format): Every organization, irrespectiv
Question #454071
Research paper (minimum 1750 words, APA format): In Germany, under the model of
Question #1210879
Research paper Vintage Clothing Store: A promotional Strategy Purpose : Vintage
Question #373797
Research paper in APA style on Business Ethics and Financial Scandals of Enron C
Question #338974
Research paper in APA style on Business Ethics and Financial Scandals on AIG (Am
Question #339272
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
Research techniques for ensuring atomicity or techniques for managing concurrenc
Next
Research technology used in human resource management on the Internet: Checklist

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.