Cyber Defence And Information Assurance

2647 Words Mar 13th, 2015 11 Pages
PGCert
Cyber Defence and Information Assurance

Reflective Portfolio

Module 01 : Governance and Management

Kinshuk De

Introduction
This portfolio is a reflective account of what I have learnt during the Governance and Management module and reflect on the three tasks posed, based on the case study of a system D.I.A.M.O.N.D (Driver Identification After Motoring Offence using Numerous Databases).
We worked in groups and deliberated (Deliberations, 9 March 2015) what the D.I.A.M.O.N.D. system would do, that is to accept, store, process, return result pertaining to sensitive data from limitless interconnections, not only limited to end users or external departments, and who own the data. All of us agreed that this is a shared system and there is a need to incorporate reasonable measures to protect and defend the information system to provide requisite level of information assurance by ensuring the confidentiality, integrity and availability of information. This is critical success factor for business security has to be owned top down from the board. I investigated and understood that assurance is the level of belief that the system would provide reliable output, data, and knowledge. A widely accepted definition of Information Assurance, is to protect businesses by reducing risks by means of comprehensive and systematic management of security countermeasures, driven by risk analysis (Cherdantseva and Hilton, 2013).
Both groups first deliberated what the system…
Open Document