User Account

All Pages

Information security standards for an organization

Assignment Help Computer Network Security
Reference no: EM13779109

Overview
Every organization must consider the mandatory and recommended practices when creating its information security program and/or security policies. Legislative documents such as FISMA are mandatory, yet standards documents such as FIPS 200 can also be mandatory. The selected organization used one or more standard when creating its information security program. For this project, you will identify a standard used by your organization in its information security program, then compare and contrast with another similar standard.

Learning Objectives
After completing this project, students will be able to

1. Identify recognized US Standards Organizations

2. Describe at least two technical standards

3. Compare and contrast technical standards for information systems security technologies.

4. Describe how the technical standards impact the selected organizations' information security programs

Deliverable

Your research paper should be at least three (3), full pages, double spaced, 1-inch margins, in New Times Roman 12-pitch font, with a cover page (name, course number, date, title of paper) and a reference page. The cover page and reference page are not included in the three-page minimum. Papers not meeting the three full-page minimum will lose points. You must have at least three scholarly sources, correctly formatted per APA guidelines. Submit your research paper to the appropriate TurnItIn assignment area by the due date.

Detailed Description of Learning Activity

1. Review your organization's information security program documentation and determine what standard(s) the organization used to create the program.

2. Pick one of the following three standard options for your comparison:

 FIPS 200 and ISO 27002

 FIPS 140-2 and ISO 19790

 DES/3DES/AES (if you select this option you must compare all three standards against each other)

3. Select three (3) to five (5) points of analysis (POAs) from the FIPS 200, FIPS 140-2, or AES standard.

4. Find the equivalent POA in the ISO 27002*, ISO 19790*, or 3DES/DES standard respectively.

5. Write your research paper. At a minimum, the paper should include
 an Introduction that includes the purpose of your paper, introduces the organization, and explains why you selected the standards you are researching

 a Standards section that describes from a general standpoint, the two standards you selected for the paper

 a Points of Analysis section that describes your three to five points, from a general standpoint

a Compare and Contrast section explaining the differences between the two standards, using details and specifics

 Use spell and grammar check before submitting. It is also a good idea to have someone else read your paper.

 Submit the project to TurnItIn and the classroom by the due date.

6. Examples of POAs:

 Cryptographic Key Management (FIPS 140-2)

 Security Levels of Cryptographic Modules (140-2)

 Key Length (AES)

 Performance (AES)

 System Impact Levels (FIPS 200)

 Security Control Selection (FIPS 200)

7. Make sure you use the rubric.

Reference no: EM13779109

Questions Cloud

Generation of psychologists theory : Every generation of psychologists seems to engage in practices that the next generation looks back upon with concern and regret. Many of the former treatments for the mentally ill are now viewed as unethica
Create a flow chart that addresses : What are at least two of the major ideologies that influence education and policy making today? In what ways have the ideologies influenced your own education?
The various reimbursement methodologies : Expand on revenue cycle management by listing the steps involved in the process and the purpose of utilizing this type of management system.
Evaluate an organization''s security policies : Evaluate an organization's security policies and risk management procedures, and its ability to provide security countermeasures. Analyze the methods of managing, controlling, and mitigating security risks and vulnerabilities.
Information security standards for an organization : Every organization must consider the mandatory and recommended practices when creating its information security program and/or security policies.
Budget cuts analysis : Over the last ten years, schools have had to make significant budget cuts. Teachers feel the brunt of educational budget cuts in many ways.
How multinational corporations deal with multiculturalis : Today most multinational corporations (MNC's) deal with multiculturalism within their own country of origin. Would you agree or disagree with this statement?
Operant conditioning and superstitions : Describe the principles/concepts which can be applied to explain the process by which operant conditioning can lead to the development and maintenance of superstitions.
Peer-group dynamics and mechanisms : Understanding peer dynamics is a very important aspect of child relationships, especially when the child reaches the teenage years. These peer group dynamics become a powerful tool for shaping behavior in positive and negative ways.

Reviews

Write a Review

Computer Network Security Questions & Answers

  Study of asymmetric and symmetric key cryptography

From your study of Asymmetric and symmetric key cryptography, use your own words

  Security risk to acknowledge using macros

Write down 200- to 300-word response which answers the following question: Based on article by Lenning (2005), what is main security risk which users must acknowledge when using macros?

  Efficient means of electronic payments

Think about security concerns and limited resources, do you think public sector entities should consider utilizing PayPal to facilitate inexpensive and efficient means of electronic payments?

  When deciding on the proper architecture to run an

the data that organizations gather about their users can vary between strictly commercial information what books did

  Encrypt plaintext using vigenere cipher

Another variation of Additive cipher uses a keyword instead of a single key. This cipher is called Vigenere cipher. Both variations work exactly the same.

  Detailed network security recommendations

As the company's subject matter expert/consultant, the CEO wants a 4-6 page report at the end of your assignment. The CEO tells you they will have remote users, so firewall and VPN technologies are needed.

  A friend is interested in installing a wireless lan in her

a friend is interested in installing a wireless lan in her small business. she has about a dozen employees. she is

  Case study - asymmetric and symmetric encryption

Case Study - Asymmetric and Symmetric Encryption, ABC Institute of Research has sensitive information that needs to be protected from its rivals. The Institute has collaborated with XYZ Inc. to research genetics

  Operations of an atm machine

Simulate the operations of an ATM machine. First, the customer is prompted to enter his personal identification number pin (for this case study, we test only if this pin is formed by 4 digits, otherwise a message like "Invalid PIN, try again..." w..

  Find time when station c hears the collision

The size of the frame is long enough to guarantee the detection of collision by both stations. Find: The time when station C hears the collision (t3).

  Corporate governance and a company''s cybersecurity posture

Analyze the connection between corporate governance and a company's cybersecurity posture. Provide at least three (3) points to justify whether or not there is an impactful relationship between corporate governance and a company's cybersecurity po..

  Structure for the task of implementing

Draft a work breakdown structure for the task of implementing and using a PC-based virus detection (one that is not centrally managed)

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd