DISCUSSON 1
"Outsourcing" Please respond to the following:
• List two reasons why a company would pursue onshoring or insourcing.
• List two reasons why a company would not pursue onshoring or insourcing.
DISCUSSION 2
"Scoring System" Please respond to the following:
• Imagine you have been tasked to select a scoring system to rank each project in consideration in IT portfolio management. Review each ranking option and then select the one you believe is the most efficient for ranking each proposed project. Provide a rationale for your selection.
DISCUSSION1
"The World Is Flat" Please respond to the following:
• List and explain three ethical concerns that may be argued from this flattening of the technological landscape.
DISCUSSION 2
"Ethics and Security" Please respond to the following:
• Give your opinion as to whether ethics training and security training should be conducted together within an organization. Explain your answer.
COMPUTER ETHICS
DISCUSSION 1
"Policies, Standards, Procedures, and Guidelines" Please respond to the following:
• To operate effectively, organizations must develop effective policies, standards, procedures, and guidelines.
o Describe the differences between policies, standards, procedures, and guidelines, and how they collectively govern and manage information security programs in organizations.
o Assess how organizations incorporate external policies, standards, procedures, and guidelines into the development of their information security governance program in order to adhere to external requirements while meeting the unique demands of their organization.
DISCUSSION 2
"Risk Assessment and Incident Response Teams" Please respond to the following:
• Your organization has recently established a risk assessment team and an incident response team. They have recently defined their risk assessment and incident response processes. The first team meeting is this week and you want to ensure that you convey the importance of the teams to each team member.
o Develop your introductory remarks to the teams, including five main points of risk assessment and five main points of incident response that you want to emphasize.
o Decide what you will say to the team to attempt to avoid conflicts of interest.
o From the e-Activity, identify the beneficial information, provided by US-CERT, in the development of a risk assessment team or an incident response team.