Creating and Communicating a Security Strategy

As an IT professional, you’ll often be required to communicate policies, standards, and practices in the workplace. For this assignment, you’ll practice this important task by taking on the role of an IT professional charged with creating a memo to communicate your company’s new security strategy. 
The specific course learning outcomes associated with this assignment are:  
• Analyze the importance of network architecture to security operations. 
• Apply information security standards to real-world implementation. 
• Communicate how problem-solving concepts are applied in a business environment. 
• Use information resources to research issues in information systems security. 
• Write clearly about network security topics using proper writing mechanics and business formats. 
Preparation
1. Review the essential elements of a security strategy 
A successful IT administration strategy requires the continuous enforcement of policies, standards, and practices (procedures) within the organization. Review these elements to see how they compare: 
Policy:  The general statements that direct the organization’s internal and external communication and goals. 
Standards:  Describe the requirements of a given activity related to the policy. They are more detailed and specific than policies. In effect, standards are rules that evaluate the quality of the activity. For example, standards define the structure of the password and the numbers, letters, and special characters that must be used in order to create a password. 
Practices: The written instructions that describe a series of steps to be followed during the performance of a given activity. Practices must support and enhance the work environment. Also referred to as procedures. 
2. Describe the business environment  
You are the IT professional in charge of security for a company that has recently opened within a shopping mall. Describe the current IT environment at this business. You can draw details from a company you work for now or for which you have worked in the past. You’ll need to get creative and identify the details about this business that will influence the policies you’ll create. For example, does the company allow cell phone email apps? Does the company allow web mail? If so, how will this affect the mobile computing policy? Describe all the details about this business environment that will be necessary to support your strategy. 
3. Research sample policies 
Familiarize yourself with various templates and sample policies used in the IT field. Do not just copy another company’s security policy, but rather learn from the best practices of other companies and apply them to yours. Use these resources to help structure your policies: 

●  Information Security Policy Templates 
https://www.sans.org/security-resources/policies
 
●  Sample Data Security Policies 
https://www.sophos.com/en-us/medialibrary/PDFs/other/sophos-example-data-security-policies-na.pdf?la=en
 
●  Additional Examples and Tips 

Don't use plagiarized sources. Get Your Custom Essay on
Creating and Communicating a Security Strategy
Just from $13/Page
Order Essay

Example 1: XYZ Inc. Company-Wide Employee Password Strategy 
Policies 
•All users must have a password.
•Passwords must be changed every six months.
 
Standards
•A password must have a minimum of six characters.
•A password must have a maximum of 12 characters.
•A password must contain letters, numbers, and special characters other than $.
 
Practices-Employee
•Create a password. The UserID should be an EmployeeID already generated by HR.
•Send a request to create the account to the Information Technology (IT) department.
•User receives a temporary password.
•Users must change their temporary password the first time they log in.
 
Example 2: Security Policy and Standards
Password Policy: Passwords are an important part of computer security at your organization. They often serve as the first line of defense in preventing unauthorized access to the organization’s computers and data.

In order to define the password policy, it is important to identify the standards.
1. Multi-factor authentication
2. Password strength standard
3. Password security standards; how to keep the password secure
 
Tips and Points to Consider When Identifying Risks or Security Vulnerabilities
•Flaws in operating systems due to constant attack by malware
•Denial of services attacks
•Employees data theft
•User set a weak password or password that is easy to guess, such as a birthday or child’s name.
•User leaves sensitive data on an unlocked, unattended computer
•Organization allows sensitive data on a laptop that leaves the building
•Data can be accessed remotely without using proper security
Memo Outline 
Network Security Associates of Atlantis, Inc. 123 Watery Lane
Atlantis, USVI 91199 
From: IT Security Dept. Re: Security Policy 
Date:
Section 1: General Policies and Motivation
Section 2: Passwords
Section 3: Biometrics
Section 4: Tokens
Section 5: Physical Security
Section 6: Email Policies
Section 7: Breach Reporting Responsibilities
Section 8: Mobile Policy and BYOD (Bring Your Own Device) 

Place your order
(550 words)

Approximate price: $22

Calculate the price of your order

550 words
We'll send you the first draft for approval by September 11, 2018 at 10:52 AM
Total price:
$26
The price is based on these factors:
Academic level
Number of pages
Urgency
Basic features
  • Free title page and bibliography
  • Unlimited revisions
  • Plagiarism-free guarantee
  • Money-back guarantee
  • 24/7 support
On-demand options
  • Writer’s samples
  • Part-by-part delivery
  • Overnight delivery
  • Copies of used sources
  • Expert Proofreading
Paper format
  • 275 words per page
  • 12 pt Arial/Times New Roman
  • Double line spacing
  • Any citation style (APA, MLA, Chicago/Turabian, Harvard)

Our guarantees

Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.

Money-back guarantee

You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.

Read more

Zero-plagiarism guarantee

Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.

Read more

Free-revision policy

Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.

Read more

Privacy policy

Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.

Read more

Fair-cooperation guarantee

By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.

Read more
Use the discount code "OFFNOW" today and get a 20% offOrder Now
Live Chat+1(978) 822-0999EmailWhatsApp