The Current Service Level Agreement

1223 WordsFeb 24, 20175 Pages
Introduction After reviewing the current Service Level Agreement (SLA) between Finman Account Management, LLC, Datanal Inc, and Minertek, evidence was found that security standards necessary to protect all parties were not addressed within the body of document. The following information technology security standards are recommended to protect all parties involved and should be applied to the SLA in this case. For Finman Account Management, the chief concern is to provide guidelines within the SLA that address data protection, authorized use, sharing of data, and retention/destruction of data. Furthermore, Finman is devoted to protecting intellectual property, patents, and copyright information while also safeguarding physical…show more content…
(6) “Appropriate technical and organizational measures shall be taken against unauthorized or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.” (Key Definitions of The Data Protection Act | ICO, 2015). Authorized Use, Retention, Sharing, Destruction The primary focus of Finman’s corporate data strategy is to limit the retention, sharing, use and destruction by Minertek and Datanal. An IT alignment strategy will match each organization’s capabilities, resources, strengths, and risks to formulate strong goals for each partner to align. The standards and procedures proposed within ISO/IEC 20000 explain best practices for service management. ISO/IEC 20000 provides the approach for establishing best management practices and includes establishing policies and procedures to provide proper information assurance for data, cyber security awareness training and risk management. Cybersecurity awareness training will reduce the chances of risks occurring between the three parties engaging in any activity outside the best practices of the ISO/IEC 20000, while also mitigating risks to employees and networks. Once training has been completed, each company will be responsible for the unauthorized retention, sharing, use and destruction of Finman’s corporate data. Furthermore, the
Open Document