Upload File

information security management role of management

  • Home
  • Documents
  • Information Security Management Role of Management
prev
next
out of 9
Download Information Security Management Role of Management

Upload: om-mishra

Post on 06-Apr-2018

216 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • 8/3/2019 Information Security Management Role of Management

    1/9

    Barriers to Security

    Organizational characteristics

    Lack of structure

    Business environment

    Culture

    Lack of Standard Operating Procedures

    Lack of Education, Training, and Awareness

    Lack of understanding/appreciation oftechnology

    Lack of leadership from senior management

  • 8/3/2019 Information Security Management Role of Management

    2/9

    Managements Role in

    Information Security Total/Perfect security is a myth

    Critical Asset Identification

    Initial Risk Assessment

    Risk Assessment as a continuous process

    Creating a security team

    Initiate and actively participate in planning/design/documentation/testing of security policy

    Initiate and actively participate in planning/design/documentation/testing ofrecovery/response policy

  • 8/3/2019 Information Security Management Role of Management

    3/9

    Managements Role in

    Information Security Actively involved in establishing standard

    operating procedures

    Developing and maintaining an appropriate

    organizational culture

    Ensure employees are educated and trained

    regarding importance of following security policy

    Have an understanding of what each securitytool proposed by IT team can do or cannot do

  • 8/3/2019 Information Security Management Role of Management

    4/9

    Managements Role in

    Information Security Have a good control environment

    Physical controls

    Data/Content control Implementation control (outsourcing)

    Operations/Administrative Control

    Application Controls specific to individual

    system components/applications

    (e.g., Limiting e-mail attachments)

  • 8/3/2019 Information Security Management Role of Management

    5/9

    Managements Role in

    Information Security Recognize that security is a socio-

    technical issue

    Recognize that security requires an end-to-end view of business processes

    Achieve a balanced approach to security one that does not solely focus on

    technological solutions Recognize that security rests on three

    cornerstones

  • 8/3/2019 Information Security Management Role of Management

    6/9

    Three Cornerstones: Technology

    Have an understanding/appreciation oftechnology Firewalls

    IDS/IPS systems

    Antivirus/Security Patches

    Symmetric and Public Key Cryptography towardsconfidentiality, authentication, integrity and non-repudiation

    Secure servers

    VPNs

    Evaluation of potential technology acquisitions basedon their impact on security

  • 8/3/2019 Information Security Management Role of Management

    7/9

    Three Cornerstones: Organization

    Organizational characteristics typically

    under the control of organization

    Structure Business environment

    Culture

    Policies and Responses

    Standard Operating Procedures

    Education, Training, and Awareness

  • 8/3/2019 Information Security Management Role of Management

    8/9

    Three Cornerstones: Critical Infrastructure

    Infrastructure that are so vital that their

    damage or destruction would have a

    debilitating impact on the physical or

    economic security of the country

    Telecommunications

    Banking

    Energy

  • 8/3/2019 Information Security Management Role of Management

    9/9

    What is Managements role?

    Management ties everything together

    Responsibility

    Ownership

    TechnologyInfrastructure

    Organization

    Management

    Security is a Mindset, not a service. It must be a part of

    all decisions and implementations.


The Role of Security Monitoring & SIEM in Risk …s3.amazonaws.com/rdcms-himss/files/production/public/...The Role of Security Monitoring & SIEM in Risk Management Jeff Kopec, MS,

Human Resources Document Management Role-Based Security Access

Devolutions Server · Client-side caching User management Built-in Database user support Security group Role management Per session security access (view, edit, delete) Custom database

Federal Information Security Management Act: Fiscal Year 2013 … · personnel, security awareness and role-based security training and has established an information security capital

Food Security Cluster Information Management. Role of DFPs in the Information Management process Role of IM team in Dhaka – how we can add value to what

OneFS Multiprotocol Security Untangled - Dell EMC US · PDF fileWHITE PAPER ONEFS MULTIPROTOCOL SECURITY UNTANGLED ABSTRACT This paper describes the role that identity management,

Role based Security in .NET

Regulatory Director Energy, Systems Management & Security ... · The Regulatory Director – Energy, Systems Management and Security will play a pivotal role at the heart of Ofgem

Chapter 11 Information Security Management. Agenda Security Threats –Sources –Problems Security Program –Senior Management’s Security Role –Technical

Patient Characteristics Survey Module · 2. Security Management System –Discussion Points • Overview: Role of a Security Manager, Steps to become a Security Manager • How to

District Disaster Management Plan Balaghat - MP SDMA · District Disaster Management Plan ... C 1.3.16 Role of Private Security ... District Disaster Management Plan Balaghat 10 NYKS

The Role of People Management, Performance and Incentives in more effective Lab Safety and Security

NIST’s Role in Computer Security

Databricks Security · facets of security — encryption, identity management, role-based access control, data governance, and compliance standards — natively into the data platform

Cryptographic Role-based Security Mechanisms Based on … · Cryptographic Role-based Security Mechanisms Based on ... area is hierarchy key management ... Based on the hierarchical

Ethics studies in graduate security management programs in ...1161/fulltext.pdf · Security Management programs and the role of ethics studies in the professionalization of security

The Role Of Information Security Management System In

Information Security- Perspective for Management Information Security … · 2011-03-18 · 3 Information Security Management Information Security Management “Information security

Dynamic Role Rule Security

sind wir Ihre beste Verteidigung. - SAST SOLUTIONS · •• Authorization & GRC Consulting • SoD Analysis • Role Management • Safe Go-Live Management Superuser Management SECURITY

Getting Started with Oracle Fusion Human Capital ...role to the Add Role list, and click Save. "Provision the IT Security Manager Job Role with Roles for User and Role Management"

DENTIFYING RISK · G.C. Lichtenberg, German physicist, philosopher SECURITY MANAGEMENT . Objectives Chapter 8 Define risk management and its role in the organization Use risk management

Fusion Role Based Security Model

The Role of Identity and Access Management in … · we can Sumner Blount, Merritt Maxim CA Security Management the role of identity and access management in achieving “continuous

The Role of the Chief Officer: A Strategic Leader€¦ ·  · 2017-11-20The Role of the Chief Officer: ... • Security • Applications • Project Management ... • Monitor systems

Overall Role of Security Systems Security Services

Role of Weapon and Ammunition Management in Preventing ... · The role of weapon and ammunition management in preventing conflict and supporting security transitions Preliminary findings

Information Security Risk Management - ACUIA.org the Noise... · Agenda •Current State of Affairs •Why Information Security? •The Role of Risk Management •Information Security

RMH Security Guide - Retail Management Hero (RMH)Retail Management Hero Security – Role Based Access Overview Role-based access control in Retail Management Hero (RMH) regulates

The Security Officer’s Role

Intelligence Role in National Security

ROLE of Cyber Security

DEFENSE SECURITY SERVICE DSS Role in International Security

Management Security Reference for Order · • Abstract and job roles for an oering • Duty roles and the role hierarchy for each job role and abstract role • Privileges that are

THE ROLE OF BIM FOR SAFETY AND SECURITY MANAGEMENT · realization of an integrated multidisciplinary model for safety and security management (IMMSSM) ... analyses that justify operating