The bottom of page 87 the best strategies that work and lists questions for revi

Question

The bottom of page 87 the best strategies that work and lists questions for reviewing a current strategy. Pick three of these to discuss in your own words. Why are these good questions? Why are the answers important for strategic planning? What can happen if they're not addressed?

1. Does your security strategy work as well as it used to? (Yesterday’s strategy rarely keeps working.)

2. Have current issues rendered your old strategies inadequate? What needs to change in the face of emerging threats: increasingly smarter mobile devices, cloud technologies, drive-by attacks, and so on?

3. Are you tracking emergent strategies in your organization to better analyze how you are coping with new threats?

4. Are you tracking unrealized strategies to learn from your failures?

5. Are your security policies, processes, and procedures documented?

6. Can you quickly update them as your organization learns?

7. Has your strategy created a culture of security in the organization you serve?

8. Are the tools and metrics you employ helping you implement and refine your strategy? (These include operational metrics, technology metrics, business metrics, compliance met- rics, and risk metrics

Explanation / Answer

Answer)

Security strategies are very important in today's world. We have list of questions for reviewing a current strategy. Let's discuss some of the above questions:

1. Does your security strategy work as well as it used to? - Security of the company should be changing and should be adjusting to the threats of the outside world. This is a good question because the security strategy is a very important strategic measure to protect the company from a threat and to mitigate risks and eliminate threats. As prevention is better than cure, this is a good question and the answer is important for planning against the security strategy. If the answer is yes, then its ok, if the answer is no, then it needs to be rectified and worked upon. If the security strategy is not addressed, then the company security will be at risk.

4. Are you tracking unrealized strategies to learn from your failures? - As we have already said that security of the company is of prime importance and thus tracking unrealized strategies should be done. When we learn from our failures, that's the greatest gift of all, and thus we will have to implement the security strategies of our failures and make moves and implement security in such a way such that there are no failures or vulnerabilities left because of past mistakes. Thus this is an important question and is worth addressing to.

5. Are your security policies, processes, and procedures documented? - As the security of a company is of very high importance, thus we can expect the process and procedures to follow standards of security prevalent in the market. Also, having security policies, processes, and procedures documented is another important step, as these will make sure that we can follow a structured reference to the security standards and whatever security measures we have applied to the company to mitigate risks and overcome threats. Thus, security policies, processes, and procedures should be documented and this question is important and need to be answered because of the above reasons, and thus is a good question.

Related Questions

Navigate

• Browse (All)
• Browse T
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.