Information Assurance And Management Of The Information Systems For All Organization

2216 Words9 Pages
Project Proposal Week 7 Project Paper Freddy R. Orellana American Military University Information Assurance Architecture HME Plan Information assurance (IA) is a vital element for the management of the information systems for all organization (Willett, 2008). The systematic plan for HME will begin with the development of a comprehensive information assurance plan that addresses the main issues from a fundamental approach to the basic implementation of the core principles. First, HME must understand the main areas of concern from an assurance standpoint (Willett, 2008). The core principles have their foundation in three main areas; these areas are the unintended damage, vulnerabilities, and risk. According to Willett…show more content…
The enterprise refers to the organizations as a whole, to include all the different departments and sections within the corporation. All components have a single bottom line and share a set of goals and objectives (Willett, 2008). Literature Review The purpose of the IA HME plan is to enhance the business process within the organization. The IA risk is a direct result of the business need generated by the organization. Therefore, we must establish the drivers for this particular project in order to determine the different levels of threat. The two drivers are the business and technical drivers. These two will setup the starting point for the analysis and implementation of the different counter measures and core principles (Schou & Shoemaker, 2006) The solution for the problem will start with the IA framework. The framework will aid the administrators, management, and the end user defined a set terms and concepts that will aid with the objectives. Willett (2008), indicated that the framework is not a solution to the problems, but a way to describe the solution. The framework will implement the previous mentioned drivers to start the planning portion of the IA architecture. The organization has the power to determine how to implement the drivers and how to address the risks associated with the objectives. However, organizations must comply with external requirements such as law and regulation.
Open Document