IT SECURITY POWER POINT PRESENTATION A slide deck that is seven to nine slides l

Question

IT SECURITY

POWER POINT PRESENTATION

A slide deck that is seven to nine slides long, not including an introduction and summary slide. The purpose of the deck is to provide a presentation to your IT security team on the benefits of information security governance. The objective is to communicate the need for strong and robust security governance.

You should discuss IT security governance frameworks and approaches that will lead to the following:

Strategic alignment of security with business strategy and organizational objectives.

Reduction of risk and potential business impacts to an acceptable level.

Optimization of security investments with organizational objectives.

Efficient utilization of security investments supporting organization objectives.

Performance measurement and monitoring to ensure that objectives are met.

Explanation / Answer

Strategic alignment of security with business strategy and organizational objectives Business strategies must be confidential and private with objective not to leak/ share the secure data of company with unintended sources. Security must be strong to protect the business from all kinds of threats by reducing the risks at operational level and related to information. To make strong security we must understand those potential risks, and threats from all angles. Analyzing the effect of a threat can lead us to make accurate decisions. 2. Reduction of risk and potential business impacts to an acceptable level Understanding the potential risks before they become threats is the task of Auditors in a company. Risk management process includes reducing the risk to an acceptable level if it cannot be removed. Risks should be assessed to find the extent of possible threat. Risks must be controlled and should be under a particular range of acceptability. Risk has to be identified along with its impact, its level should be determined, whether high, medium or low and accordingly the risk management program should be followed. 3.Optimization of security investments with organizational objectives Depending upon the objectives of the company, strategic security investments are done. The investment should safeguard the quality of the safety measures taken for the benefit of company. Quality of protection of information at executive level reflects the level of investments in security. 4.Efficient utilization of security investments supporting organization objectives Efficient utilization of security investments lies in protection of sensitive data of company. Critical business applications can be identified and can be analyzed while sharing data with outsiders. Quality of security can save the company from loss and future negative risks. 5.Performance measurement and monitoring to ensure that objectives are met Performance must be measured to check quality Close attention should be paid to goals, and outcomes of organization at employee level. Each employee must be accountable for his work. All the activities in the organization should result into meeting a single common goal for the organization.

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.