Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

You have just been hired as an Information Security Engineer for a large, multi-

ID: 3865246 • Letter: Y

Question

You have just been hired as an Information Security Engineer for a large, multi-international corporation. Unfortunately, your company has suffered multiple security breaches that have threatened customers' trust in the fact that their confidential data and financial assets are private and secured. Credit-card information was compromised by an attack that infiltrated the network through a vulnerable wireless connection within the organization. The other breach was an inside job where personal data was stolen because of weak access-control policies within the organization that allowed an unauthorized individual access to valuable data. Your job is to develop a risk-management policy that addresses the two security breaches and how to mitigate these risks.

REQUIREMENTS

Write a brief description of the case study. It requires two to three pages, based upon the APA style of writing. Use transition words; a thesis statement; an introduction, body, and conclusion; and a reference page with at least two references. Use a double-spaced, Arial font, size 12.

Explanation / Answer

To handel these type of scenarios, vaious access control methods are available in the market. if I had given an opportunity to manage the IT department, I would choose to implement GRC method in the ongoing projects. This software can be customized based on our team.

If a new emploee is joined in the team, firstly he has to give access to work. This access management is done by figuring out roles and responsibilites. Once responsibilites of the new employee are defined, he willl be given access to the servers with roles which reflects his responsibility. These roles are get approved by me. By doing this I can maintain checklist regarding roles of an employee.

My role in the organisation is the one which is responsible for approving roles of an employee there by ensuring smooth work flow. Access control is the one method which mitigates the risk by implementing governance principles. All these maintains work flow in the project. By implementing GRC, all the business strategies will be in order and change in policies can be updated within the team by giving ecah individual their own roles and responsibilites.

This hierarchy provides two level security assistance both in financila and technical aspects within the organisation and ensures not to have breaches especially in financial apects.

Related Questions

You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2526261
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2528150
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2529038
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2531272
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2534326
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2536226
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2536799
You have just been hired as a new management trainee by Earrings Unlimited, a di
Question #2545416
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
You have just been hired as a tinancial analyst tor Lydex Company, a manutacture
Next
You have just been hired as an Information Security Engineer for a videogame dev

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.