User Account

All Pages

Create a policy that would benefit your organization

Assignment Help Management Information Sys
Reference no: EM132240201

Consider the organization where you work, or an organization where you would like to work if you are not currently employed.

Create a Policy that would benefit your organization

Suggest some controls for your policy

Suggest an audit mechanism

Use the following Format for your policy:

Overview

You should put one or two sentences here that summarize the policy and its purpose for management. This is typically an explanation of why the policy exists. Don't be too technical.

Scope

This is where you define who or what the policy applies to, from all employees to only cashiers that handle cash in the front office. If it applies to equipment, it could be all equipment, all servers, all network connected equipment, or just company issued cell phones. Be specific.

Policy

This is where the policy is actually defined. Don't be too specific, leave that to the procedures and controls that support the policy.

For example, a password policy might state that users cannot share passwords, passwords must be complex, help desk personnel never request passwords, and passwords must rotate periodically.

The details of good password construction can be then put in a guideline document, instructions for the help desk on reseting passwords can be a procedure, and that Group Policy is used to force password changes every 60 days is a technical control.

None of that should be in the policy, but it all needs to be properly documented and communicated to the people that need it - the guidelines to all staff, the help desk procedure to help desk staff, and the technical controls to the domain admins.

If you are in doubt remember that good policy statements talk about what the policy is trying to accomplish, and are addressed to a wide audience. Procedures and controls talk about how it is to be accomplished and are addressed to the staff that must carry it out.

Compliance Measurement

Typically, this section includes the job title of the person responsible for overseeing its implementation or the department if multiple people are responsible, a reference to audit mechanisms, and the consequences for failure to abide by policy.

Definitions, Related Standards, and Policies

This section usually contains definitions of technical or ambiguous terms, cross-references to applicable regulations, and other policies that relate to this policy. Examples include union contracts, discipline policies, and implementation guidelines. In our password policy example, this where readers would be told to consult the password construction guideline document.

Exceptions

If there any circumstances that might allow temporary exception to the policy, such as during an emergency, define them here. If there is anyone with the authority to temporarily waive the policy, they should be identified by job title. This section is often omitted since many policies do not allow any exceptions.

• 3-5 pages in length.

• APA format..citations, references etc.

Reference no: EM132240201

Questions Cloud

How will you get your customers to participate : Conduct a web search for examples of firms that have successfully employed user generated content; there are lots of great ones to choose from.
Demonstrate the intracacies of search queries : To demonstrate the intracacies of search queries and the corresponding search results page and how something as minor as a singular vs a plural can affect them.
What is your positioning statement : Tell us about your company or product/service. What is your positioning statement? How do you distinguish your product or company from your competitors?
Cultural diversity and social justice in the workplace : Prepare a comprehensive research paper in which you choose an area of research that is relevant and pertinent to the study of culture, diversity and social
Create a policy that would benefit your organization : Consider the organization where you work, or an organization where you would like to work if you are not currently employed.
Describe the lessons you learned from the assignment : BMKT3334 In the final part of the paper, please describe the lessons you learned by addressing the following two questions: What did you learn from.
List controls placed on domains in the it infrastructure : Develop a list of compliance laws required for DoD contracts. List controls placed on domains in the IT infrastructure.
How does marvel studios help consumers : How does marvel studios help consumers
Find out what laws your state has passed to prosecut : Using the resources available in your library, find out what laws your state(Virginia) has passed to prosecute computer crime.

Reviews

Write a Review

Management Information Sys Questions & Answers

  Evaluate the effectiveness of a scrum

Assignment: Scrum vs. Plan-Based Software Development Strategies, Evaluate the effectiveness of a Scrum approach compared to a plan-based approach

  Discuss aboout the five database servers

There are currently 25 employees working in the Oza IT Department. These employees comprise database administrators, systems administrators.

  How robot good and bad of replacing human dashers

Write a paper for a part of group work Information Systems and Technology for how robot good and bad of replacing human dashers?

  Explain some of the issues that a company may face

Briefly explain some of the issues that a company may face as it experiences growth and begins to address the proper use of its information systems

  Briefly describe a current organisational problem

Identify and briefly describe a current organisational problem or challenge faced by your chosen organisation.

  Discuss how information can be used strategically

How use of information in each article relates to Porter's Five Competitive Forces model. Discuss how information can be used strategically, based on example.

  Create a work breakdown structure

You have been tasked with the project of organizing a company offsite 2-day training session in which people are brought in from different parts of the country.

  Identify an information management domain

Identify an information management domain and focus of interest . Model and design an information management data structure.

  Protecting data privacy across the wan

Imagine you are an Information Systems Security Officer for a medium-sized financial services firm that has operations in four (4) states.

  Analyze cybersecurity laws that will impact organization

Analyze cybersecurity laws that will impact this organization based on the type of organization (for example, public, private, government, or nonprofit).

  Briefly summarize the details of the evidence

Determine whether or not you agree with the opinion of the security professionals quoted in the article that anyone could've perpetrated this attack.

  Important information about customer relationship

important information about customer relationship managementsearch the internet for web sites and articles about

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd