Assignment:
Consult your syllabus and complete your reading assignment below for this week. Then, research the Internet for an article that is no more than 2 years old that deals with one or more concepts covered in your reading assignment. Need Assignment Help?
Summarize the article in your own words and create 3 discussion questions you will use to lead a discussion of this article in your synchronous class session.
Please note this assignment will be run through Turnitin. Format your assignment using APA standards and attribute all sources.
Domain: Asset Security
The Asset Security domain contains the concepts, principles, structures, and standards used to monitor and secure assets and those controls used to enforce various levels of confidentiality, integrity, and availability. Information security architecture and design covers the practice of applying a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organization's security processes, information security systems, personnel and organizational sub-units, so that these practices and processes align with the organization's core goals and strategic direction.
Operations security can be challenging for the security professionals, depending on their background and experience. Operations security is primarily concerned with the protection and control of information processing assets in centralized and distributed environments. Operations security is a quality of other services and is also a set of services in its own right.
Information Security Governance and Risk Management addresses the frameworks and policies, concepts, principles, structures, and standards used to establish criteria for the protection of information assets, as well as to assess the effectiveness of that protection. It includes issues of governance, organizational behavior, and security awareness.
Information security management establishes the foundation of a comprehensive and proactive security program to ensure the protection of an organization's information assets. Today's environment of highly interconnected, interdependent systems necessitates the requirement to understand the linkage between information technology and meeting business objectives. Information security management communicates the risks accepted by the organization due to the currently implemented security controls, and it continually works to cost effectively enhance the controls to minimize the risk to the company's information assets. Security management encompasses the administrative, technical, and physical controls necessary to adequately protect the confidentiality, integrity, and availability of information assets. Controls are manifested through a foundation of policies, procedures, standards, baselines, and guidelines.