ISM | Cyber Security Importance for University
Added on 2022-08-25
17 Pages2844 Words25 Views
Running head: ISM
ISM
Name of the Student:
Name of the University:
Author Note:
ISM
Name of the Student:
Name of the University:
Author Note:
ISM1
Table of Contents
Task 1...............................................................................................................................................2
Summary......................................................................................................................................2
CISO Blog...................................................................................................................................2
Task 2...............................................................................................................................................4
Summary......................................................................................................................................4
Acceptance Use Policy................................................................................................................4
Task 3.............................................................................................................................................10
Summary....................................................................................................................................10
Infographics...............................................................................................................................11
References......................................................................................................................................12
Appendix........................................................................................................................................15
Table of Contents
Task 1...............................................................................................................................................2
Summary......................................................................................................................................2
CISO Blog...................................................................................................................................2
Task 2...............................................................................................................................................4
Summary......................................................................................................................................4
Acceptance Use Policy................................................................................................................4
Task 3.............................................................................................................................................10
Summary....................................................................................................................................10
Infographics...............................................................................................................................11
References......................................................................................................................................12
Appendix........................................................................................................................................15
ISM2
Task 1
Summary
This task is about writing CISO blog which could be published on intranet of University.
In the blog, chief information security officer (CISO)’s role, duties as well as responsibilities
along with group infrastructure of cyber security would be introduced. The blog would outline
cyber security’s importance for University with special focus be given on General Data
Protection Regulation (GDPR).
CISO Blog
Cyber Security
22.03.2020
I have been appointed as new chief information security officer (CISO) for this
university. It is responsibility of CISO for providing security to data and information of the
university. It is job of CISO in analyzing the threats within the system of the university. It is role
of CISO to keep abreast of the developing threats in security and helping board understand the
potential problems of security which could arise from the acquisitions or all other big moves.
CISO must ensure that internal staff does not steal or misuse data. It is responsibility of CISO to
plan, buy and roll out security software and hardware as well as make sure network infrastructure
along with IT is designed having best practices for security. CISO ensures that only people
having authorization have access for restricted systems and data. It is duty of CISO keep ahead
of the security needs through implementation of projects or programs which mitigate risks (Voigt
and Von dem Bussche 2017). CISO detects what was wrong in breach, deals with those if they
are internal as well as plans for avoiding repeats of similar crisis.
Task 1
Summary
This task is about writing CISO blog which could be published on intranet of University.
In the blog, chief information security officer (CISO)’s role, duties as well as responsibilities
along with group infrastructure of cyber security would be introduced. The blog would outline
cyber security’s importance for University with special focus be given on General Data
Protection Regulation (GDPR).
CISO Blog
Cyber Security
22.03.2020
I have been appointed as new chief information security officer (CISO) for this
university. It is responsibility of CISO for providing security to data and information of the
university. It is job of CISO in analyzing the threats within the system of the university. It is role
of CISO to keep abreast of the developing threats in security and helping board understand the
potential problems of security which could arise from the acquisitions or all other big moves.
CISO must ensure that internal staff does not steal or misuse data. It is responsibility of CISO to
plan, buy and roll out security software and hardware as well as make sure network infrastructure
along with IT is designed having best practices for security. CISO ensures that only people
having authorization have access for restricted systems and data. It is duty of CISO keep ahead
of the security needs through implementation of projects or programs which mitigate risks (Voigt
and Von dem Bussche 2017). CISO detects what was wrong in breach, deals with those if they
are internal as well as plans for avoiding repeats of similar crisis.
ISM3
General Data Protection Regulation (GDPR) would make protection of data of the
university top priority. It is duty of CISO in taking measures for enhancing security of data as
well as eliminating or mitigating related risk. GDPR contains several provision which aimed to
strengthen data subjects’ rights. GDPR applies strict obligations over data controllers as well as
processors with respect to notifying to data subjects that are impacted as well as supervisory
authority in case of data breach. Data controller should notify supervisory authority about data
breach in certain period of time, unless breach would result in risk for freedoms and rights of the
data subjects (Albrecht 2016). GDPR states protecting information security and network is
legitimate interest for the university, which includes operators of the networks as well as
computer systems of the university. Requirements of GDPR apply for every member of the
university for creating more protection of the data within the system of the university. Few of
major data protection and privacy requirements of GDPR consist of: requiring subject’s consent
for processing of data, providing notifications of data breach, anonymizing data that is collected
for protecting privacy and safely handling data transfer. It is duty of CISO in overseeing GDPR
compliance. GDPR would mandate several standards for the university for handling data of the
university for better safeguarding processing as well as movement of sensitive data of the
university. Purpose of GDPR is imposing uniform law of data security for every member of the
university. CISO would be involved for ensuring every new offering is compliant to GDPR as
well as secure design from business, technical and legal standpoint. Role of CISO would change
quite little on everyday basis of practice (De Hert et al. 2018). It would be role of GISO to
maintain security practices for protecting sensitive data of the university.
General Data Protection Regulation (GDPR) would make protection of data of the
university top priority. It is duty of CISO in taking measures for enhancing security of data as
well as eliminating or mitigating related risk. GDPR contains several provision which aimed to
strengthen data subjects’ rights. GDPR applies strict obligations over data controllers as well as
processors with respect to notifying to data subjects that are impacted as well as supervisory
authority in case of data breach. Data controller should notify supervisory authority about data
breach in certain period of time, unless breach would result in risk for freedoms and rights of the
data subjects (Albrecht 2016). GDPR states protecting information security and network is
legitimate interest for the university, which includes operators of the networks as well as
computer systems of the university. Requirements of GDPR apply for every member of the
university for creating more protection of the data within the system of the university. Few of
major data protection and privacy requirements of GDPR consist of: requiring subject’s consent
for processing of data, providing notifications of data breach, anonymizing data that is collected
for protecting privacy and safely handling data transfer. It is duty of CISO in overseeing GDPR
compliance. GDPR would mandate several standards for the university for handling data of the
university for better safeguarding processing as well as movement of sensitive data of the
university. Purpose of GDPR is imposing uniform law of data security for every member of the
university. CISO would be involved for ensuring every new offering is compliant to GDPR as
well as secure design from business, technical and legal standpoint. Role of CISO would change
quite little on everyday basis of practice (De Hert et al. 2018). It would be role of GISO to
maintain security practices for protecting sensitive data of the university.
End of preview
Want to access all the pages? Upload your documents or become a member.
Related Documents
A Discussion on Cyber Wars and Securitylg...
|6
|1274
|166
Managing IT Security and Risklg...
|25
|7497
|68
SAP-assigning Roles and Responsibilitieslg...
|9
|1877
|16
IT governance. 0. IT Governance. 2. IT governance. Indilg...
|4
|663
|33
Cybersecurity Name of the Studentlg...
|10
|1746
|26
Enhancing Security and Understanding the Business Model of Facebook: Assignment 1lg...
|9
|1327
|106