Problem
1. List the components of PKI, then describe each component and its function.
2. List the components of PKI, then describe each component and its function.
3. What are certification and accreditation when applied to information systems security management?
4. List and describe at least two certification or accreditation processes.
You've been hired by an investment company with 500 employees to serve as their Information Systems Security Manager. Your first task from the Chief Information Officer is to write a series of policies and procedures as the company has nothing in place.
• Where is a good place to start your research?
• List at least 3 policies and procedures that you would work on first and explain why these three should be considered early.
• Recommend a password policy.
• If the C.I.A. triangle is incomplete, why is it so commonly used in security?
• Explain what value an automated asset inventory system has for the risk identification process?