Question: GOOD LUCK QUESTION 1 (20 marks) Your CIO requested you, as the newly appointed Information Security Manager, to prepare a memorandum to provide detail relating

GOOD LUCK QUESTION 1 (20 marks) Your CIO requested you, as the newly appointed Information Security Manager, to prepare a memorandum to provide detail relating to the need for a Corporate Information Security Policy (CISP). Prepare a memorandum providing detail of what a CISP is, what role it should play in your organisation, what detail should be included in such a policy and how it relates to the information security management system (ISMS). Your memorandum should convince senior management that a CISP is indeed a critical component of an ISMS and core to the effective protection of your organisations valuable information assets. To support your motivation, briefly describe what an ISMS and its importance to an organisation The memorandum must be presented in a logical and readable manner, with clear section headings, on 2 to 3 pages [DO NOT EXCEED 3 PAGES!].

Risk management in general is a responsibility that belongs to the board. As information and IT are such critical assets to the well-being of your organisation, the CIO asked you, the newly appointed Information Security Manager, to prepare a detailed memorandum on what Risk Management entails in the domain of IT. This memorandum must address all the key aspects related to risk management, including: a brief explanation of what IT Risk Management is the various types and approaches to IT Risk Management the typical structure of a risk assessment exercise the various levels of management that should partake in risk management and related approaches relevant to each level any related information to explain the full context of IT Risk Management as it relates to the ISMS. The presentation must be structured in a logical and readable manner, with clear section headings, on 2 to 3 pages [DO NOT EXCEED 3 PAGES!].

As the newly appointed Information Security Manager, you are required to prepare a detailed SETA (Security Education, Training and Awareness] programme for your organisation. This programme must be founded on best practices and have the ultimate goal to cultivate an information security culture within your organisation. Provide detail of such a SETA programme highlighting, amongst others, the nature, content and recommended approaches of such a programme relevant to your organisation. The proposed SETA programme must be presented in a logical and readable manner, with clear section headings, on 2 to 3 pages [DO NOT EXCEED 3 PAGES!].

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related General Management Questions!

Q:

I would like assistance with assignment 3 and 4 on the attached document I have been struggling with the subject and its my last AUI4863/102/0/2016 Tutorial letter 102/0/2016 ADVANCED INTERNAL AUDIT...

Q:

Help me please. In the month of September, all of the walmart grocery stores in Virginia sold 429,382 eggs. In that same month, all of the walmart grocery stores in Texas sold 283,054 eggs. How many...

Q:

Question 1 (20 marks) Eliseth Ltd is a public company whose shares are traded on the ASX. A former executive was formally accused of fraud last month. This executive used his influence with three...

Q:

Laptop fastest selling item on Gumtree "Laptops are one of the most requested and fastest selling items on gumtree," says Claire Cobbledick, head of marketing for Gumtree South Africa." South...

Q:

Read the case study below and answer ALL the questions that follow. Heathrow Terminal 3 Integrated Baggage Facility, Heathrow Airport Ltd Overview The way in which baggage is handled has a huge...

Q:

I need someone that is very good at Principles of accounting and finance to answer the attached questions. It is not a one-day job therefore if you do not have the time, please don't attempt it. The...

Q:

QUESTION 1 (100 marks) City of Services is a metro municipality in the Eastern Cape. The municipality is located on the Coast. The citys main industry is tourism with an emphasis on family holidays...

Q:

QUESTION 1 36 marks PART A Rethink Limited is a company that specialises in the recycling of plastic materials. The company has a recycling plant that is situated in Johannesburg. The plant focuses...

Q:

Question 1: (57 marks: 85 minutes) Fresh Living Limited ('Fresh') is a distributor of natural and organic products produced in a socially sustainable manner. The Fresh head office is based in a...

Q:

This solution was already done by another tutor on this site, but now he is not responding for the below query, I have submission today, so can anyone help me to solve it for me in the shortest time...

Q:

A small experiment is conducted to fit a multiple regression equation relating the yield y to temperature x 1 , reaction time x 2 , and concentration of one of the reactants x 3 . Two levels of each...

Q:

Uncertainty and risk play important roles in decision-making. Discuss how these factors affect decision-making. What is the difference between decision-making under uncertainty and decision-making...

Q:

a lawsuit has been filed against Carla Vista Company for wrongful termination. Carla Vista legal counsel had encouraged the company to settle because it is likely they will lose the case. The amount...

Q:

Dont know what im doing wrong. due at midnight Complete this question by entering your answers in the tabs below. Req 1 to 3 Reg 4 Determine the present value of the lease payments at September 30,...