IT 253 3-2 Activity

You are required to assess key functions including risk management and compliance for J.P Morgan Chase, and present a written report based on J.P Morgan Chase on the following in 2,000 words:  Risk management framework – Conduct an analysis of the risk management process/ framework implemented at the J.P Morgan Chase (including risk assessment and risk control mechanisms). You are required to report on key risks that the institution is exposed to and explain aspects of the framework, emphasizing the effectiveness of the risk management strategies used. Anti-Money Laundering and Terrorist Financing Strategies – Discuss with examples, J.P Morgan Chase approaches/ strategies to combat money laundering and terrorist financing issues.  Statutory legislation and compliance - Explain the importance of financial institutions meeting regulatory requirements. Comment on specific legislation that J.P Morgan Chase must be compliant with.

Suppose your college or organization is considering a project to develop an information system that would allow all employees, students, and customers to access and maintain their own human resources information, such as address, marital status, and tax information. The main benefits of the system would be a reduction in human resources personnel and more accurate information. For example, if an employee, student, or customer had a new telephone number or e-mail address, he or she would be responsible for entering the data in the new system. The new system would also allow employees to change their tax withholdings or pension plan contributions. Identify five potential risks for this new project, and be sure to list some negative and positive risks. Provide a detailed description of each risk and propose strategies for addressing each risk. Document your results in a short paper.

List and decsribe internal (building) information security risks and mitigation  tactics and how they will affect decision making strategies.

You are required to assess key functions including risk management and compliance for the Bank of America. You are to present a written report based on the Bank of America on the following:  Risk management framework – Conduct an analysis of the risk management process/ framework implemented at the institution (including risk assessment and risk control mechanisms). You are required to report on key risks that the institution is exposed to and explain aspects of the framework, emphasizing the effectiveness of the risk management strategies used. Anti-Money Laundering and Terrorist Financing Strategies – Discuss with examples, the institution’s approaches/ strategies to combat money laundering and terrorist financing issues.  Statutory legislation and compliance - Explain the importance of financial institutions meeting regulatory requirements. Comment on specific legislation that the financial institution must be compliant with.

Suppose your company has an e-commerce Website for selling different types of goods and services. Discuss the followings: i) Ethical concerns associated with storing and analyzing user data?  ii) How would you use intrusion detection system to control security threats that face this website?

Insecure usage of the many applications through mobile devices may allow cyber criminals to access sensitive information such as mail account and contacts information of your mobile devices. Many agencies have cautioned against the cyber vulnerability of the many popular games and applications and few others, used by tens of thousands of people who are confined to home due to the COVID-19 pandemic. Using your own experience the various cyber threats in using these vulnerable apps can be? and what security measures we can adopt to combat them .

Insecure usage of the many applications through mobile devices may allow cyber criminals to access sensitive information such as mail account and contacts information of your mobile devices. Many agencies have cautioned against the cyber vulnerability of thePage 3 of 3many popular games and applications and few others, used by tens of thousands of people who are confined to home due to the COVID-19 pandemic.Using your own experience the various cyber threats in using these vulnerable apps can be? and what security measures we can adopt to combat them .

The Electronic Privacy at ABC Control Case: The notice of termination would arrive seemingly out of the blue. Suddenly and unexpectedly Barbara Hanley and Jim Sampson, who worked for ABC Control (a fictitious company), would be told that they had been terminated from the firm—Barbara for sending personal email from her company computer and Jim for spending too much time surfing the Web at recreational sites and downloading pornography. Both would be stunned. They had received no warning. They did not know they were in violation of company policy—since none had been promulgated. They did not know they were being monitored. And their productivity and work output had not diminished since they were favorably rated at their last annual evaluation. “I hate to do this,” Sarah Hanson, vice president of Human Resources (HR), argued to Alan Stephens, executive vice president of ABC Control. “Somehow it doesn’t seem fair. We’ve not warned them, and they have been good productive employees up…

The Electronic Privacy at ABC Control Case: The notice of termination would arrive seemingly out of the blue. Suddenly and unexpectedly Barbara Hanley and Jim Sampson, who worked for ABC Control (a fictitious company), would be told that they had been terminated from the firm—Barbara for sending personal email from her company computer and Jim for spending too much time surfing the Web at recreational sites and downloading pornography. Both would be stunned. They had received no warning. They did not know they were in violation of company policy—since none had been promulgated. They did not know they were being monitored. And their productivity and work output had not diminished since they were favorably rated at their last annual evaluation. “I hate to do this,” Sarah Hanson, vice president of Human Resources (HR), argued to Alan Stephens, executive vice president of ABC Control. “Somehow it doesn’t seem fair. We’ve not warned them, and they have been good productive employees up…

Discuss the three types of information security policy proposed by NIST SP 800-14.

Explain the PESTEL Analysis of Blackberry Data Security Sector.

Data needs to be secured in three states: at rest, in use, and in motion. Select one state of data and describe its security challenges. What are some of the best practices securing data in that state?

33-ChoicePoint is a company that gathers data from police, criminal and motor vehicle records credit and employment historiescurrent and previous addresses and insurance claims to assemble and maintain electronic dossiers on almost every adult in the USA. ChoicePoint is an example of: O a. Interpol O bProfiling System O c. Data aggregator O d. Insurance company

Scenario You have recently been hired as a business analyst for the chief financial officer (CFO) of a small direct-to-consumer organization. The company is growing and is looking for ways to gain efficiency by automating some processes. The CFO has asked you to perform an analysis of the current payroll onboarding function within the organization. Through this analysis of the current onboarding functions, you will determine the benefits and drawbacks of how employee information flows through an AIS and how using an AIS will improve the payroll onboarding process. Provide a high-level overview of the payroll onboarding process. Explain how the payroll onboarding processes function within accounting information systems. Identify inputs and outputs of the payroll onboarding processes within an accounting information system. Identify how key transaction cycles are automated. Include the following details in your response: a) Identify steps in the payroll process from paper approval…

The National Incident Management System (NIMS) is a federal system that has a core set of doctrines, principles, and organizational processes. NIMS is routinely updated and is primarily focused on developing a consistent, nationwide template to enable which of the following?   Federal government organizations to work with nongovernmental organizations and the private sector to respond and recover from the effects of incidents regardless of their size   Federal, state, tribal, and local governments, nongovernmental, and the private sector to work together to respond and recover from the effects of incidents that are considered significant and that impact large areas or populations   Federal, state, tribal, and local governments, nongovernmental, and the private sector to work together to respond and recover from the effects of incidents regardless of their size   Only the federal, state, tribal, and local governments to work together to respond…

The way we handle privacy and security is a vital part of our responsibility to our customers and essential to the success of our business. Privacy and security are often viewed by organisations merely as compliance or risk management responsibilities, but we see significant opportunities for Vodafone to differentiate what we offer and strengthen our reputation through our efforts in these areas. Our customers trust us with their personal information and their privacy. Protecting that information and respecting their privacy is fundamental to maintaining that trust. Our privacy and security programmes govern how we collect, use and manage customers’ information – from ensuring the confidentiality of their personal communications and respecting their permissions and preferences, to protecting and securing their information. Personal data also has enormous potential to create economic and social value, both for the individuals concerned and for the businesses who serve them. In order to…

Analyze the retail environment in which the organization operates, including the current protocols and policies in place related to information assurance. b) Evaluate the threat environment of the organization. c) Based on your analysis and evaluation, what are the best approaches for implementing information assurance principles? Where do you see the most important areas for improvement to current protocols and policies? d) Assess the threats to and vulnerabilities of the organization by creating a risk matrix to outline the threats and vulnerabilities found and determine possible methods to mitigate the identified dangers.

Consider the below scenario “ Mr. Ahmed the manager of CISCO protects personal privacy and proprietary of Mr. Ali who is an employee working in CISCO “ , Name this security service. a. Confidentiality b. Authentication c. Availability d. Integrity

MGMT Software Solutions (MSS) is a Barbadian company that works with young clients toincrease their popularity on various social networks. After all, likes and views can be a ticketto fame for upcoming artists. That is, they like to follow friends; retweets are the social currencyof the 21st century.MSS also negotiates with clients to have them wear, advertise, or use a product or brand oreven interact with a celebrity to increase their online visibility.MGMT Software Solutions collects as much data as possible from its clients' fans. Thisdata is generated when a fan retweets, clicks “Like,” or creates a comment, thus creatinga demographic profile of that fan. For example, MSS has clients Collins, Acadia, Julia,and Tyler.When Collins’ friends like his profile picture, Facebook tracks who his most popular friendsand family are. Why? Those persons, in turn, ‘like’ products, services, and celebrities –information valuable to those advertisers.When Acadia ‘likes’ dozens of brands on…

MGMT Software Solutions (MSS) is a Barbadian company that works with young clients toincrease their popularity on various social networks. After all, likes and views can be a ticketto fame for upcoming artists. That is, they like to follow friends; retweets are the social currencyof the 21st century.MSS also negotiates with clients to have them wear, advertise, or use a product or brand oreven interact with a celebrity to increase their online visibility.MGMT Software Solutions collects as much data as possible from its clients' fans. Thisdata is generated when a fan retweets, clicks “Like,” or creates a comment, thus creatinga demographic profile of that fan. For example, MSS has clients Collins, Acadia, Julia,and Tyler.When Collins’ friends like his profile picture, Facebook tracks who his most popular friendsand family are. Why? Those persons, in turn, ‘like’ products, services, and celebrities –information valuable to those advertisers.When Acadia ‘likes’ dozens of brands on…

What role should a business manager play in helping determine the computer hardware that the organization will use?