Security Information Essay

Submitted By jumpyshark
Words: 1462
Pages: 6
Open Document
Executive Summary The project in question is to make our company’s system safer and more reliable, as well as keeping the cost down without losing any information that could harm us if in another person’s hands. We need to keep our most valuable assets safe and one way to do this is to tighten our systems security by limiting certain access to these assets via computer systems. Our most valuable assets are as followed; our vendors systems, warehouse(s), distribution methods, computer technologies, and newest projects. All of these can be found in our operating system and without the proper securities they all can become compromised. In order to keep these assets safe we need to limit the access of some employees that need to know certain things and those who do not need restricted access. We can make this happen but it may take a few days but it will help with limiting who sees what. Another thing we can use to help is to get training done through SANS. SANS gives free resources that can help with the security problem within the computer systems as well as how we use our systems. There is no cost for using these resources. They were compiled to help the people attending SANS training programs, but security of the Internet depends on vigilance by all participants, so we are making this resource available to our entire community, this will help all of us in the long run (SANS, 2104).
Think you don’t have anything of value to protect? Think again. The key asset that a security program helps to protect is your data — and the value of your business is in its data. You already know this if your company is one of many whose data management is dictated by governmental and other regulations — for example, how you manage customer credit card data. If your data management practices are not already covered by regulations (Trent, 2008).
With that said it is not realistic to say we can cover everything, but we can try our hardest to make sure things are covered and if a problem arises we can grab ahold of it and control it. We have to be mindful that our customers/vendors have valuable information that we can see. Our company needs to keep our information as well as our customers/vendors information secure. We can do this in multiple ways, one being having a set password policy. Having our employees change their passwords every 90 days and having to be at least twelve characters long using at least one capital and lower case letter special character and number, minimum life on one password fifteen days, and not using the same password within ten passwords. IE password being A2!gh%GhqJ this password cannot be changed until fifteen days after it was created; it cannot be repeated until after ten different passwords have been used. Another way to keep our customers/vendors information safe is restricting who can see the information. If a manager in accounting is trying to see something in shipping, then they are way outside of their realm. We can set up a system to manage who sees what. Security Policy Recommendations
Security Policy Analysis
A policy is typically a document that outlines specific requirements or rules that must be met. In the information/network security realm, policies are usually point-specific, covering a single area. For example, an "Acceptable Use" policy would cover the rules and regulations for appropriate use of the computing facilities. We can use a standard to protect our systems like our; networks, servers and everything else that we use. However, we need to take time to make requirements to for each item specifically to work at the best possible level.
A standard is typically a collection of system-specific or procedural-specific requirements that must be met by everyone. For example, you might have a standard that describes how to harden a Windows 8.1 workstation, like the tablet I am using, for placement on an external (DMZ) network. People must follow this standard exactly
Show More

Related Documents: Security Information Essay

Security: Security and Information Essay

that is being protected. Attack - an act that is an intentional or unintentional attempt to cause damage or compromise to the information and/or the systems that support it. Control, Safeguard, or Countermeasure - security mechanisms, policies, or procedures that can successfully counter attacks, reduce risk, resolve vulnerabilities, and otherwise improve the security within an organization. Exploit - to take advantage of weaknesses or vulnerability in a system. Exposure - a single instance…

Words 1032 - Pages 5

For The Security And Confidential Information Of Payroll Information

Project 1 For the security and confidential information of payroll information for our company the following procedures will be put in place: All payroll documents will be locked away in a secure filing cabinet or system in a secure location in the payroll area, the payroll software and systems will have password access with only authorised staff being aware of the passwords which will be changed at the end of each month, all computer screens have been moved so that they are not visible so that…

Words 547 - Pages 3

Information Security Analysis

Information systems security is an integral part of many companies including sensitive fields such as medical offices. Because of this, security officers are essential to ensure that the physical and logical aspects of information security are performed efficiently. An information security officer will have various duties such as managing information security functions in accordance to a companies policies and guidelines, providing reports to management in intervals, establishing and ensuring implementation…

Words 1758 - Pages 8

Information Security Essay

Information Security By: Ronald Maddox Topics Discussed Security of private information Identity theft How these security breaches affect us as internet users Ways to help protect yourself from loss of personal information and internet fraud. Information Security  Information Security which is also know as InfoSec, is the practice of defending information from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction.  Most of the information…

Words 669 - Pages 3

Information Security Threats

David Ofori CMGT 400 May 31, 2015 Information Security Threats Introduction Chase bank is a world renowned banking organization that has been in business for decades. It is under the conglomerate of JPMorgan Chase & Co. which is a leading global financial services firm with assets of $2.6 trillion and operations all across the world. Through various financial services, which included personal banking, small business lending, mortgages, credit cards, auto financing and…

Words 2133 - Pages 9

Information security Essay

Opinion is divided. Almost three-quaters of the population would like to see some form of regulation but most people are unsure how it can be done. Whichever way the dust settles on this issue, the tension between free and regulated flow of online information will continue to spark heated debates amongst academics, policymakers, entrepreneurs and activists across the globe. Early in the new year, the Commission is to arrange a seminar to discuss the issue of Internet content regulation, as its contribution…

Words 2361 - Pages 10

Information Security Essay

Network Security Past Present and Future ISSC340: Local Area Network Technologies Smith American Military University Introduction to Network Security Since the development of computer networks there have been weaknesses and those seeking to exploit them. Initially the reasons make have been non malicious and academic in nature, but later became ways to steal valuable data in cyberspace. Those who break into networks aka hackers have many different reasons for…

Words 4180 - Pages 17

Information Security Essay

system is open to damage. Vulnerabilities can in turn be the cause of exposure. 3. How is infrastructure protection (assuring the security of utility services) related to information security? Information security is the protection of information and it is critical elements, including the…

Words 864 - Pages 4

Information Security Essay

Committee: GA Topic: Development in the field of information and telecommunication in the context of information security Dear delegates, After reading your position papers, we made a summary as follows. Please read it and may it help you. Country Name Argentina Basic Position Argentina is focusing on cracking down the ill-using of ICTs. Past Actions Reached a ‘Tunisia commitment’ with many countries to make the commitment in advancing the development of information technology and accelerate the national exchange…

Words 4000 - Pages 16

Student: Information Security Essay

Guide for the Role and Responsibilities of an Information Security Officer Within State Government April 2008 Table of Contents Introduction _________________________________________________________________ 3 The ISO in State Government ___________________________________________________ 4 Successful ISOs – Necessary Skills and Abilities ____________________________________ 7 Twelve Components of an Effect ive Information Security Program _____________________ 9 The ISO Role and…

Words 6593 - Pages 27