Who needs an Information Security Program
Who needs an Information Security Program?
Review the case study and the weekly readings for weeks 1 – 3.
Prepare a two-page briefing paper (5 to 7 paragraphs) that provides background to senior leadership and corporate board for the case study “company.” (Use the case study and provide specific information about “the company”).
In your briefing paper, provide background about what the standard is, what the standard requires, and how the “company” can benefit from implementing a formally documented information security management system (program). You should also address the standard’s requirements for policies to support the information security program.
Your briefing paper should fully answer the question “Why should our company adopt an ISO/IEC 27001 compliant Information Security Program?”
Setting up the required programs that can be used to protect the information that is an organization ensures that responsibilities can be divided in an organization pertaining to the information. As a result, the level of accountability can be increased. The current paper seeks to evaluate the benefits that can be anticipated owing to the utilization of the system in the designated company…………………………