Evan Anderson
IS3350
Security Issues in Legal Context
Unit 9 (August 9, 2016)
Information Security Governance
Learning Objective
- Examine the principles requiring governance of information within organizations.
Key Concepts
- High-level policies
- Information security standards
- Use of security guidelines
- Security procedures
- Military and civilian governance of information
Assigned Reading
- Grama. Chapter 13. “Information Security Governance”
- SC Magazine: Insurance Firm Now Offering Discount on Use of IoT Alarm
- SC Magazine: Researchers Find Sex Toy Streams User Data
- Information Security Forum: Threat Horizon 2018
Keywords
- Risk analysis
- High-level policies
- Incident response
- Risk management procedures
- Incident response team
- Disaster recovery plan (DRP)
- Business continuity planning (BCP)
- Corporate security policy
- Risk mitigation
Assignments and Study Materials
- Unit 9 Lecture Slides
- Discussion 9.1: Risk Analysis
- Lab 9.2: Recommend IT Security Policies to Help Mitigate Risk
- Assignment 9.3: Executive Summary on Risk Mitigation
Questions and Feedback
Use the form below to ask questions or provide feedback about the concepts covered during Unit 9's session of class: