Information Security Management: Core Concepts and Career Prep
During the span of one's college career, a select number of courses become something more than a simple requirement to be satisfied to assure graduation; these are moments in a student's educational process which make the most lasting impacts. In my personal case, the lessons I have learned as part of my studies in ISSC680 will likely be remembered in those terms, as my eventual career will find me utilizing much of the foundational knowledge I gained in this course on a daily basis. As an aspiring information security officer, who hopes to apply the skills imparted throughout my time in ISSC680 during my professional career, I am sure that when I reflect on my college experience this class will stand out above the rest in terms of significance. The two textbooks which have provided detailed instruction on the field of information security, Information Security Fundamentals and Information Security: Design, Implementation, Measurement, and Compliance, have become essential resources both in and out of the classroom setting, as the wealth of experiential data contained within has enabled me to comprehend both the requirements of my future career, and the great responsibility my duties as an information security officer will entail. From the theoretical underpinnings of data protection and access control methods, to the moral and ethical ramifications of protecting a firm's invaluable data by any means necessary, the course material I have been exposed to during my time in ISSC680 ranks among the most influential of my college career.
Research Paper
Undergraduate
Distinction and Need for Governance at All Three Levels Corporate it Info Security
Governance is the process of empowering leaders to implement rules that are enforceable and amendable. For comprehensive understanding of the term' governance' it is essential to identify the leaders and the set of rules, and various positions that leaders govern. Corporate governance, IT Governance and Information Security Governance embraces a linkage with certain acquiescence system while focusing on information security and privacy issues in the organization. This work will give a distinction between the three terms and identify how they related to each other and how endeavors to comply with each system is leveraged to apply to each other.
Balancing marketing, sales communication, and security in corporate online presence
On January 16, 2012 Zappos' experienced its first major security breach through a compromised server at its recently opened Kentucky Distribution Center, with an experienced hacker gaining access to potentially 24 million customer records. The Zappos' internal ordering systems had encrypted passwords for safety as part of its basic architecture, yet the last four digits of credit cards, complete customer histories and contact information were all compromised (Letzing, 2012). Zappos is the world's leading online store selling women's men's, and children's shoes and accessories, and was recently sold by founder and CEO Tony Hsieh to Amazon.com for $800 million (Hsieh, 2010). As part of the sales of this massive website and online business, Tony Hsieh successfully negotiated to retain control over the logistics, supply chain and innovative approaches to warehouse management that drastically reduces the time to complete an order (McDonald, 2011).
Databases and Regulatory Compliance Challenges
The advent of technology has increased the popularity of database usage in firms, yet the legislation regulating the field has yet to be finalized. The changing nature of the IT sector, coupled with the legislative traits, creates several situations in which the companies find it difficult to comply with the regulations. This paper recognizes some of those difficulties, and also proposes some solutions.