Question: Write an information security policy document that defines the security program that you are going to implement at Initek (a healthcare company). Your policy must

Write an information security policy document that defines the security program that you are going to implement at Initek (a healthcare company).

Your policy must include the following at a minimum:

  1. A definition of information security, its overall objectives and scope and the importance of security as an enabling mechanism for information sharing
  2. A statement of management intent, supporting the goals and principles of information security in line with the business strategy and objectives
  3. A brief explanation of the security principles, standards, and compliance requirements of particular importance to the organization, including:
    1. Standards that are defined in your control framework
    2. Compliance with legislative, regulatory, and contractual requirements
    3. Security education, training, and awareness requirements

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related General Management Questions!

Q:

Write an information security policy document that defines the security program that you are going to implement at Initek.

Q:

All the requirement is in the attach file, please give me the answer as soon as possible. ISSUES IN ACCOUNTING EDUCATION Vol. 24, No. 1 February 2009 pp. 63-76 Assessing Information Technology...

Q:

Complete case requirements 1-4 (exhibit 2) and fill out chart on exhibit 3 ISSUES IN ACCOUNTING EDUCATION Vol. 24, No. 1 February 2009 pp. 63-76 Assessing Information Technology General Control Risk:...

Q:

Several months ago, you started working at a large public accounting firm as an IT staff auditor. You are currently working on your first assignment, an ITGC review of the Foods Fantastic Company...

Q:

CREDIT CARD HEIST AT THE HEARTBREAK CAF By Galen Collins (2012), Journal of Hospitality and Tourism Cases Volume 2, Issue 1 ABSTRACT Tom Petrov, the owner and operator of four restaurants, grapples...

Q:

QUESTION 3 The King IV code identifies 16 principles that guide aspirations in terms of governance practices. Identify ten (10) principles and discuss whether the MTN Group has substantially applied...

Q:

***Use this Sources*** Development / Implementation Policy and Procedures or Standards Optum, a subsidiary of UnitedHealthcare, does not have a published policy and or procedure for outsourcing IT to...

Q:

As a consultant to TechCare, study the case study below in proposing a draft Corporate Information Security Policy (CISP) for TechCare.com. STEP 1: In preparation for drafting the CISP contents (Step...

Q:

Case Study: Credit Card Heist at the Heartbreak Cafe How should Tom view and approach PCI-DSS compliance? What should be the roles of the franchisee, the franchisor, and the payment processor in...

Q:

Tutorial 2: Information Security Policy (ISP) Individual work Introduction Star Gold is a small to medium sized enterprise that offers a range of software development and networking solutions. The...

Q:

For a certain good, the collection percentage of credit issued in any month is an exponential function of the time since credit was issued. Specifically the function which approximates this...

Q:

Privacy Policy Flip-Flops Although a companys privacy policy may look acceptable when you read it. Description Privacy Policy Flip-Flops Although a companys privacy policy may look acceptable when...

Q:

A firm s common stock pays an annual dividend that increases by 1 . 8 percent per year, commands a market rate of return of 1 3 . 8 percent, and sells for $ 1 9 . 0 8 per share. What is the expected...

Q:

atch the compensation objectives with their meanings. Efficiency Efficiency drop zone empty. Fairness Fairness drop zone empty. Compliance Compliance drop zone empty. Improving performance and...