Information Security FUNDAMENTALS phần 9 docx

... TABLE 9. 4 Preventive Control Information Preventive Control Data Sought Interview Subjects Information security Information security policies, standards, and procedures Information security ... Ⅲ Information security controls Ⅲ Environmental security Ⅲ Physical security Ⅲ Disaster recovery plans (i.e., existing plans to recovery IT capabilities) Ⅲ...

Ngày tải lên: 14/08/2014, 18:22

... Network Access and Security Components Protecting networking resources is one of the areas of information security that currently receives the most focus. When thinking of security, senior management ... performance degradation, but can give increased security. The information security manager often has to decide between easier administration and increased security. This is th...

Ngày tải lên: 14/08/2014, 18:22

... between 197 5 and 198 5. 8. In what year was public key encryption developed? Answer: Public key encryption was invented in 197 5. 9. Prior to the Internet, how did most hackers share information? ... of a security policy? Answer: A security policy describes security rules for your computer systems and defends against all known threats. 2. What is the first step...

Ngày tải lên: 13/08/2014, 15:21

... (BIA) 9. 3.1 Identify Sponsor(s) 9. 3.2 Scope 9. 3.3 Information Meeting 9. 3.4 Information Gathering 9. 3.5 Questionnaire Design 9. 3.6 Scheduling the Interviews 9. 3.7 Conducting Interviews 9. 3.8 ... Tabulating the Information 9. 3 .9 Presenting the Results 9. 4 Preventive Controls 9. 5 Recovery Strategies 9. 5.1 Hot Site, Cold Site, Warm Site, Mobile Site 9. 5.2 Key Co...

Ngày tải lên: 14/08/2014, 18:22

... still more to information security. Another phase of information security is personnel security. This can be both fun and taxing at the same time. Personnel security, like physical security, can ... of information security is the security policy (see Figure 2.1). If information security were a person, the security policy would be the central nervous system. Policies bec...

Ngày tải lên: 14/08/2014, 18:22

... plus messages on: Ⅲ Information security standards Ⅲ Information security monitoring Ⅲ Information security performance measurement Ⅲ More information security good practices Of ... on: Ⅲ Information security policies Ⅲ Information ownership Ⅲ Information classification Ⅲ Good information security practices Because employee information s...

Ngày tải lên: 14/08/2014, 18:22

... Sarbanes–Oxley ) or international standards such as British Standards 7 799 ( BS 7 799 ) or ISO 17 799 , the formal adoption of a risk analysis process will assist in proving ... template. TABLE 4.1 Sample Information Security Policy Information Security Policy Business information is an essential asset of the Company. This is true of all business in...

Ngày tải lên: 14/08/2014, 18:22

... posted FIGURE 4.6 Tiers 1, 2, and 3 Information Security Tier 1 Personnel Security Tier 2 Job Descriptions User Training Security Incidents Tier 3 AU 195 7_book.fm Page 98 Friday, September 10, 2004 ... system). TABLE 4.15 Sample Information Security Policy Information Security Policy Policy Statement Information is a company asset and is the property of the Company. Com- p...

Ngày tải lên: 14/08/2014, 18:22

... Reserved. TABLE 5 .9 Information Classification Policy: Example 4 Information Management 1. General A. Corporate information includes electronically generated, printed, filmed, typed, or stored. B. Information ... authorize indi- vidual users Information owner to define permissions on user, group, or function basis Information owners to define permissions Delete access to in...

Ngày tải lên: 14/08/2014, 18:22

... 17 799 . ISO17 799 is actually “a comprehensive set of controls comprising best practices in information security. ” It is essentially, in part (extended), an internationally recognized generic information ... Systems, Security, etc. Map- ping to some standard such as ISO 17 799 is another option. When identifying possible controls, it could be beneficial to categorize controls AU 195 7_...

Ngày tải lên: 14/08/2014, 18:22