Identify concerns you feel the bank will need to focus

Assignment Help Management Information Sys

Reference no: EM131188722

Application: Aligning Security with Business Objectives

The security policy of an organization is not an one-for-all solution; it varies with the organization. As you begin your exploration of information assurance and risk management, consider how organizations in different countries, and even different states, are distinct, with their own structures, culture, and dynamics, as well as unique security-related regulations. Some of this may be due to the nature of the organization, its size, and its business use cases-that is, situations in which a technique may be used profitably. Other concerns can be attributed to the laws, regulations, and industry standards for its location. Even organizations doing business on the Internet may face regulations when doing business in another country or state.

To prepare for this Assignment, assume the role of a consultant working for a bank in your home country that is expanding its online banking to mobile devices. At the same time, it will be opening its first branch office in another country. Choose the location of the new office and use the Internet as well as the Learning Resources in this unit to research regulations and industry standards relevant to the new location. Also research the privacy laws (including Internet privacy regulations) that apply for both the locations. Examples could be the Gramm-Leach-Bliley Act (financial services regulation in United States) or the California Breach Notification Law applicable for United States scenarios. You will need to refer to Brotby, "Layered Security" and "An Introduction to ISO 27001, ISO 27002....ISO 27008" in addition to other reading resources.

Write a 5- to 7-page paper explaining how to align the security policy of the organization with its business objectives, keeping in mind the regulations, privacy laws, and industry standards you have identified. Clearly state any assumptions, and provide citations for reputable sources used in your research.
Cover the following points:

• Explain how the regulations, privacy-related laws, and industry standards you identified apply to this scenario.

• Identify concerns you feel the bank will need to focus on because of expanding its online banking to mobile devices and opening its international branch office. Identify three areas where you will need to apply security controls to manage the risk involved in the scenario.

• For each of these three areas, develop a key goal indicator (KGI) as explained in the textbook

• For each KGI, indicate the security controls (these involve policies, processes, and tools) that will need to be developed and applied.

• Justify how the key goal indicators and the security controls you have chosen align with business objectives and enable business processes.

• Explain how industry standards and best practices are beneficial to implementing security policies that are aligned with business objectives.

Reference no: EM131188722

Questions Cloud

Prepared required documents for the manager : Paraphrase those followings from the resume and make it very professional.- Prepared required documents for the manager.

Americans pay for typical goods and services : Business profits account for nearly one-third of the price Americans pay for typical goods and services. More than 75% of what Americans buy is made in the United States. The United States is a relatively closed economy. Americans are among the mo..

Find the final weight volume and pressure of the gas : find the final weight, volume and pressure of the gas.

Justification for job training programs : Problem 1.2 A justification for job training programs is that they improve worker productivity. Suppose that you are asked to evaluate whether more job training makes workers more productive. However, rather than having data on individual worker..

Identify concerns you feel the bank will need to focus : Identify concerns you feel the bank will need to focus on because of expanding its online banking to mobile devices and opening its international branch office.

Write a program which takes two digits : Write a program which takes 2 digits, X,Y as input and generates a 2-dimensional array. The element value in the i-th row and j-th column of the array should be i * j

10 leading causes of death in the world in 2000 and 2012 : Explain how the type of disease influences the 3 levels of prevention (primary, secondary, and tertiary) that should be considered.

Could criminal charges be brought against pestinikas : The state can prove that the 92-year-old man's death was caused by this failure and that the man died of malnutrition and exposure. Under the criminal code of your state, could criminal charges be brought against Pestinikas? What possible charge ..

What that means to your education and your career : This week you learned about personal branding and what that means to your education and your career. Your assignment this week is to define your personal brand.

User Account

All Pages