Discussion 5 (CH)

.docx

School

Southern New Hampshire University *

*We aren’t endorsed by this school

Course

675

Subject

Information Systems

Date

Apr 3, 2024

Type

docx

Pages

2

Uploaded by AgentComputerSnake87

Report
What risks, if any, does offshore outsourcing of various information system functions pose to satisfying the principles of confidentiality and privacy? What do you think an organization's duty or responsibility to protect the privacy of its customers' personal information should be? Explain. In your response posts, recommend controls that will mitigate the risks suggested by your peers. Ensure the recommended controls are in compliance with industry standards. Hi class, The risk that off-shore outsourcing possess is that the company would need to ensure that the overseas vender is tied to specific condition on how data is stored, accessed and transferred (Vijayan, 2004). The author provided an example that security breaches at offshore location are harder to detect and deal with. The company also has to deal with the countries data privacy law and legal system provide a risk. If the country where the data is outsourced does not have legal system that provides protection for the data and the company to take legal actions. The organization duty and/or responsibility to protect the privacy of its customers information should be to regularly, test the system that this information is secure and that not anyone can have access to the information. This could be inputting new security measures with firewall, password and observe the logins to the system. Organization should perform background checks and check references for employees who would have access to this sensitive data (Newman & Ritchie, 2022). Having employees that leave the company, making sure that they do not have access to the information or software. The most important responsibility of the organization to protect the customers information is to have policies in place that will remind them of the consequences if you violate the policy there will be legal actions. Layapole Reference: Newman, J., & Ritchie, A. (2022, April 26).  Protecting personal information: A guide for business . Federal Trade Commission. https://www.ftc.gov/business-guidance/resources/protecting-personal-information-guide- business#:~:text=Regularly%20remind%20employees%20of%20your,Security %20numbers%20and%20account%20numbers. 
Vijayan, J. (2004, February 20).  Offshore outsourcing poses privacy perils . Computerworld. https://www.computerworld.com/article/2574317/offshore-outsourcing-poses-privacy- perils.html 
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help