Discussion

  

Q.1 

Managing Data Security and Applying Forensics Within the Enterprise 

Imagine you are part of a security policy development team. Compose four policies that could prevent threats to the information assets of an organization. Select one policy you believe would be the best policy for strengthening data security and explain why. 

Explain how you would factor risk management practices into the development of the a specific security policy of your choice. Develop specific measures, processes, and activities in your answer.

Distinguish the three most important factors that will protect and enhance the confidentiality and integrity aspects of data assets. Provide a rationale for your chosen factors.

Imagine you are a member of an organizations forensics support team. Suppose that the data security countermeasures of your organization have been breached. Outline possible activities that you would perform to complete the digital forensic process.

Evaluate Instructor Insight.

Any relevant topic related to this week’s lesson, or the cybersecurity in general.

Q.2

Ensuring Continuity Across the Enterprise and Managing the Incident” Please respond to any one the following:

Identify three of the most important benefits derived from performing an effective risk assessment and explain the relationship between the risk assessment and the development of a preparedness plan. Explain in your own words why a preparedness plan is critical for operations.

Provide two examples that demonstrate how preparation plans could ensure effective crisis management operations. Describe two risks that could surge if crisis management is not planned adequately. If you can find an example to demonstrate, that would be ideal, or you could use an hypothetical example.

Provide three examples that demonstrate how a well-prepared incident response team (IRT) may minimize damages that an organization may experience after a disaster. Give your opinion of two quality control measures that could be used in order to validate actions of the IRT.

Suggest three factors that should be analyzed and three activities that should be performed when planning for incident management. Select which activity would offer the most effective response support for an organization and explain why.

Any issue related to incident management.

Q.3

Developing a Knowledgeable Workforce and Instilling Security Within Operations” Please respond to one of the following:

Determine three benefits that could be derived from designing an effective training and awareness program. Select what you believe to be the most important benefit to the organization and explain why. Suggest three focus areas that a security training program should cover and explain why you believe these areas should be covered. Give your opinion on how these focus areas mitigate potential risks and threats that an organization may face.

Evaluate the importance of designing a controls framework, ensuring proper performance, and ensuring proper support to determine how reliable the operational security function is for the organization. Describe how these measures help maintain operational capability. Share your insights.

Assess the importance of managing operational capability. Provide two examples of how managing operational capability ensures the execution security strategy of an organization. Describe potential challenges an organization may face by not planning adequate controls for managing operational capability. Tell why you believe as you do.

Any current cybersecurity issues.