preview

Implementing A Company 's Security Plan Essay

Satisfactory Essays

Weekly Assignment- Security Jean Robert Robillard BUSN624: Principles of E-Commerce APUS Professor: Alex Lazio 11/27/16 Weekly Assignment-Security 1. Identify and describe the five main steps in establishing a company’s security plan? The IT department of e-commerce firms must have a security plan to protect the technologies and assess the risks. Laudon and Traver identify five steps in establishing and assessing the company’s security plan. The followings are the steps: risk assessment, security policy, implementation plan, security organization, and security audit. The first part is to assess the security risks and to inventory the e-commerce site by priority. The list of inventory consists of looking the type of information asset and the value of the firm. This step includes the accounting of the company assets from the design, activities, personals, machines, devices, payroll, and networks. These assets must be valued by their priority for the firm. After the audit of the company’s assets, it is now the step to develop a security policy. In this step, the risks are identified, prioritize, and target. The security policy must have objectives to protect the most valuable assets of the company. The third step is the development of an implementation plan to achieve the security plan goals. The security goals translate into the tools, the technologies, policies, and employee procedures. A set of measures is put in place to eliminate risks. The

Get Access