Information Security Management And Maintenance - 887 Words

ASSESSMENT OF BREACH There were a number of factors that contributed to the breach, which had they been addressed or had corresponding mitigation responses in place, would have reduced the likelihood that the breach would have taken place, or at a minimum reduce the impact of the attack. These items range from policy related issues, technology implementations, and security management and maintenance. Although I believe a number of these areas were in the process of being addressed, based on the information gathered regarding the details of the incident, it appears that it was still in many areas insufficient and would not have prevented an incident even if there had been more time available to perform the implementations. To start, there were significant issues regarding the OPM and its solutions to deficiencies found during their regular audits. These issues show a lack of Information Security management and maintenance. This is made clear in an article by ABC News that at the t ime of the Senate hearings regarding the OPM breach, â€Å"Only a few of the inspector general’s 29 recommendations for improvement have since been implemented† (â€Å"OPM chief ‘angry’ over hack,† 2015). Proper management of security audit findings must be implemented by the OPM, and the appropriate resources should be put in place to plan how to implement the recommendations as well as implement and maintain. Accountability should be put in place for the OPM management and the security andShow MoreRelatedDatabase Development Life Cycle ( Ddlc )1231 Words   |  5 Pagesdatabase analysis, logical database design, physical database design, implementation and data mapping, integration and testing, operation and maintenance, and disposition (Gupta, Mata-Toledo, and Monger 2011). Each step has associated security risks that must be accounted for. This assessment aims to describe, briefly, the purpose of each step and associated security risks Database Development Life Cycle Database planning is the first step of the DDLC. During this step, the requirement of the databaseRead MoreDepartments Strategic Objectives, And Key Services1131 Words   |  5 Pagesthat allows quickly report information up the chain. The management style that I find most effective is to actively involve it the status of projects in order to provide guidance or additional support as needed to complete the goal. Internal IT Strategies This IT department’s new strategic are as follows: Maintain current information security procedures. This internal business strategy involves ensuring every person at RR is up-to-date with current information security producers. This will help preventRead MoreDatabase Development Life Cycle ( Ddlc )1230 Words   |  5 Pagesdatabase analysis, logical database design, physical database design, implementation and data mapping, integration and testing, operation and maintenance, and disposition (Gupta, Mata-Toledo, and Monger 2011). Each step has associated security risks that must be accounted for. This assessment aims to describe, briefly, the purpose of each step and associated security risks Database Development Life Cycle Database planning is the first step of the DDLC. During this step, the requirement of the databaseRead MoreSecurity Systems Development Life Cycle828 Words   |  4 PagesSecurity Systems Development Life Cycle The security systems development life cycle (SecSDLC) uses the same phases as the systems development life cycle. Although the two processes are different due to what each is used for and the activities associated with them, Michael Whitman and Herbert Mattord claim â€Å"the overall methodology is the same.† (2012, pg. 26). Since a business, company, or an organization with a network must consider the many technologies and methodologies available today, for anRead MoreMicrosoft E Business Suite ( Ebs ) Upgrade1290 Words   |  6 Pagesthe operations and maintenance managers by providing total operational oversight at the click of a button. EBS enables users to oversee projects, asset milestones and budgets, and staff projects. It also has a quick report generator for business meetings and scheduling. Another feature that will be highly beneficial is the ability for EBS to integrate and enhance existing programs. It will streamline financials, enhance supply chain management, and fulfill human capital management requirements. UtilizingRead MoreThe ISO 17799 Framework621 Words   |  3 PagesISO 17799 is a detailed security standard organized into major areas of business continuity planning, system access control, system development and maintenance, physical and environmental security, compliance, personnel security, security organization, computer and operations management, asset classification, and control and security policy (Violino, 2005). This framework provides a high level of assurance in various areas of business. It is the most obvious for security and covers each topic atRead MoreSecurity and As-is Question Set787 Words   |  4 Pages and sharing of information between health care professionals. The HBWC’s Office of Grants Giveaway (OGG) provides for the distribution of federally supported medical grants. OGG uses a Microsoft Access database program called Small Hospital Tracking System (SHGTS) to manage the medical grant distribution process. A risk assessment of SHGTS was conducted to evaluate vulnerabilities and establish a baseline of potential threats. HBWC has not provided a written Information Security (IS) policy thatRead MoreThe Panther Flying Club Essay1671 Words   |  7 PagesThe Panther Flying Club will utilize the Oracle Service Management family of products as our customer relationship management (CRM) system of choice for customer interaction and managing service-related information. This technology will aid the improvement all of our customer interaction and customer’s needs as well as collect information from our customers. This information will be utilized in providing information for management to direction operations to aid future marketing, sales, customerRead MoreAn Strategic Planning Tool For Agencies1101 Words   |  5 PagesIntroduction and Mission Property management plans are an important strategic planning tool for agencies. A property management plan should enable the Chief executives to establish that the agency’s property is appropriate for the size and nature of the agency’s existing and future business needs. These plans should consider all short term and long term challenges faced by the property manager. It also considers the long term requirements of the agency. Property: Apartment building. Building name:Read MoreProject Lifecycle Management Solution For Capital Planning Project Delivery, Cost Control, And Facilities And Real Estate Management1077 Words   |  5 Pagesbest-in-class project lifecycle management solution for capital planning, project delivery, cost control, and facilities and real estate management.† Oracle’s Primavera Unifier provides governance across all project phases, from planning and building to operations and maintenance (Oracle’s Primavera Unifier, n.d.). It is consistently used throughout the organization and fits well into its portfolio. This system is classified as a Computerized Maintenance Management System (CMMS) and was designed