Management Of Information Security
6th Edition
ISBN: 9781337405713
Author: WHITMAN, Michael.
Publisher: Cengage Learning,
expand_more
expand_more
format_list_bulleted
Question
Chapter 1, Problem 6E
Program Plan Intro
Security policy:
- A security policy defines an organization’s security requirements.
- It provides controls and consents needed for meeting requirements.
- A security policy is a well written document in an organization giving the guidelines to how to protect the organization from threats.
- It includes
computer security threats, and how to handle situations when they do occur. - A good security policy must identify all of a company's assets as well as all the potential threats to those assets.
- The employees of the company need to be kept updated on the company's security policies.
- The policies themselves should also be updated regularly.
Failure in identifying threats:
- The failure in identification of threats is a good sign.
- The detailed investigation of threats is required in this case.
- The threats may be in different fields shown below:
- Economic trends:
- It denotes research over economy in an area.
- The notion of economic shifts over market.
- Market trends:
- The change in market conditions.
- The new upcoming trends that may hurt the company.
- The amount of competition in market.
- Funding changes:
- It denotes decrease in grants annually.
- It checks whether this decrease may hurt company’s economy.
- Government regulations:
- It denotes checking of any new regulations that may hurt company.
- It may sense the kind of damage that can happen.
- Economic trends:
- After a detailed research over identification of threats, if nothing is been found then that may denote a positive escalation.
Expert Solution & Answer
Trending nowThis is a popular solution!
Students have asked these similar questions
What is the difference between passive and active security threats? List and briefly define categories of passive and active security attacks.
What is it that differentiates an aggressive security attack from a passive security assault? Here are some of the reasons why active attacks provide a larger risk than passive ones. Provide concrete examples to substantiate the statements you've made.
Hi, I need to answer this question. The name of the book is "Hacker Techniques, Tools, and Incident Handling 3e". Thank you.
Question 2:
What are the differences between social engineering and other types of attacks?
Chapter 1 Solutions
Management Of Information Security
Ch. 1 - Prob. 1RQCh. 1 - Prob. 2RQCh. 1 - Prob. 3RQCh. 1 - Prob. 4RQCh. 1 - Prob. 5RQCh. 1 - Prob. 6RQCh. 1 - Prob. 7RQCh. 1 - Prob. 8RQCh. 1 - Prob. 9RQCh. 1 - Prob. 10RQ
Ch. 1 - Prob. 11RQCh. 1 - Prob. 12RQCh. 1 - Prob. 13RQCh. 1 - Prob. 14RQCh. 1 - Prob. 15RQCh. 1 - Prob. 16RQCh. 1 - Prob. 17RQCh. 1 - Prob. 18RQCh. 1 - Prob. 19RQCh. 1 - Prob. 20RQCh. 1 - Assume that a security model is needed to protect...Ch. 1 - Prob. 2ECh. 1 - Prob. 3ECh. 1 - Prob. 4ECh. 1 - Prob. 6ECh. 1 - Prob. 1DQCh. 1 - Prob. 2DQCh. 1 - Prob. 1EDM
Knowledge Booster
Similar questions
When it comes to security breaches, how can we tell the difference between passive and aggressive attacks? There are many reasons why active assaults provide a greater threat than passive. Your replies should be supported by concrete examples.
arrow_forward
List any 5 categories of threat with their corresponding attack examples.
arrow_forward
What are the six security levels? Provide examples of threat categories, attacker profiles, and types of attacks.
arrow_forward
Take a look at the attacks coming from within higher education. Please share any insights you may have regarding the prevention of assaults of this nature with us.
arrow_forward
How can we identify passive or aggressive attacks on security weaknesses and respond accordingly? Active attacks are riskier than passive ones for many reasons. Include examples wherever possible.
arrow_forward
What makes a security breach passive as opposed to aggressive? This is why aggressive attacks are more dangerous than defensive ones. To prove your points, please provide concrete examples.
arrow_forward
arrow_back_ios
arrow_forward_ios
Recommended textbooks for you
Management Of Information Security
Computer Science
ISBN:9781337405713
Author:WHITMAN, Michael.
Publisher:Cengage Learning,
Principles of Information Security (MindTap Cours...
Computer Science
ISBN:9781337102063
Author:Michael E. Whitman, Herbert J. Mattord
Publisher:Cengage Learning
Fundamentals of Information Systems
Computer Science
ISBN:9781337097536
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning
Principles of Information Systems (MindTap Course...
Computer Science
ISBN:9781305971776
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning
Management Of Information Security
Computer Science
ISBN:9781337405713
Author:WHITMAN, Michael.
Publisher:Cengage Learning,
Principles of Information Security (MindTap Cours...
Computer Science
ISBN:9781337102063
Author:Michael E. Whitman, Herbert J. Mattord
Publisher:Cengage Learning
Fundamentals of Information Systems
Computer Science
ISBN:9781337097536
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning
Principles of Information Systems (MindTap Course...
Computer Science
ISBN:9781305971776
Author:Ralph Stair, George Reynolds
Publisher:Cengage Learning