Reference no: EM131095658
Security and Compliance
Security and compliance are interconnected in important ways. What happens if you have a policy, but you cannot assure compliance? There is no automated enforcement mechanism. You cannot be sure if policy is followed or not.
To gain a deeper appreciation for the relationship between security and compliance, consider the following scenario:
In an organization, managers are allowed to add users to Active Directory groups, which potentially grant them access to sensitive data on file shares. There are security policies and regulations that state that this access must be reviewed quarterly to ensure that only approved people have access to certain types of sensitive data. Sometimes, when people change jobs, their access may not be removed properly, so controls need to be put in place to demonstrate that the organization is doing a good job of meeting security and regulatory requirements.
Access requirements can change frequently, and at a large organization this can become very difficult to manage. When an employee moves from one job to another in the same organization, someone must change their level of access to certain resources. A manager should approve this change, and there should be quarterly metrics that show how managers are reviewing access levels for employees, and modifying access, as needed.
For this Discussion, in 250-400 words, address the following:
For the given scenario, recommend two policies that you would create for managers approving new access and for monitoring that access. In recommending these policies, make sure they are appropriate for the employees and are in accordance with the organizational policy for approving and monitoring access. Discuss the artifacts you would generate, as a part of these policies, to demonstrate compliance.
|
Determine the percent regulation of the line
: The sending-end Voltage, current, real and reactive powers, and the power factor.
|
|
What are the different types of listening styles
: What are the different types of listening styles, and what style do you most closely identify with? Explain what your listening style is and what you have observed about how you listen.
|
|
Compare and contrast the four motivation theories
: discuss the criticism of each theory. Which theory you identify with the most and why? You can identify with more than one, but it is not required. Development of idea and grammar.
|
|
Different types of correspondence in the workplace
: You are working as the communications officer for a company located in a large office building with designated areas for employee breaks and lunches, located on each floor.
|
|
Security and compliance
: Security and compliance are interconnected in important ways. What happens if you have a policy, but you cannot assure compliance? There is no automated enforcement mechanism. You cannot be sure if policy is followed or not.
|
|
Identify your current strategy for coping with stress
: Write a summary defining stress and stressors. Explain the relationship between stress and physiological as well as psychological health. Discuss how you rated on the stress inventory - be specific. Then, identify the specific stressors in your lif..
|
|
Developing operational security metrics to meet business
: Identity management is just one area of information assurance that needs to be improved in an organization. An information assurance professional needs to have a good understanding of how well all areas of security and information assurance are be..
|
|
Small consulting company is planning to make deposits
: A small consulting company is planning to make deposits such that each one is 3% larger than the preceding one. What is the annual equivalent of this cash flow if the company makes 12 deposits and the interest rate is 8%? The first deposit is $7,000 ..
|
|
Find total reserves minus vault cash
: Total Reserves minus vault cash equals- bank deposits with the Fed. excess reserves. currency in circulation. required reserves
|