Think of a security policy you may have encountered either at school or in the workplace. Why do you suppose it was set up that way? Do you think it was effective? Would you arrive at the same solution if you were a network manager?
I work in an online gaming company and they have imposed a strict working and network policy at the place since the interaction with user data needs to be secure and therefore, the policy I have presented below represents the factor and considerations for the same:
PHYSICAL ACCESS CONTROL
Physical security can pose as much a threat to the factor of security as any other data processes. The policy outlined how employees accessed the data, the entry of visitors, access based control as well as regulation of remote access control and how the data can be accessed by the employees, specifically the use of personal devices.
NETWORK SECURITY AND PASSWORDS
The access systems were based on session based passwords which were given to each employee every day, by the IT department in order to make sure the same data cannot be accessed by individuals which did not have the access for it.
INCIDENT MANAGEMENT
This process involved the IT department's creation of a risk assessment, risk management plan as well as an incident Management plan in place and therefore, guided the actions that needed to be taken in the light of any threat, virus or attack to the system.
The policies were set up this way in order to make sure that the required processes were always accessible in the time of any disaster as well as to prevent the user data from being compromised. Being an online based gaming company, the entire influence needed to be shifter to network security and maintenance which was reviewed every three months. I do not believe these policies to be ineffective, but the measures the company took could be called extreme. And can also have a cost implication over the company's working capital, creating a large operational overhead as well.
If I was in the position of the IT manager, I would have followed the same structure but the elements easier to approach policies and access point. Instead of an OTP, I would've used a simple system with pattern-based IDPS(intrusion detection and prevention system). The poles would only be reviewed when the need arises and instead of regular penetration testing, I would've opted for a yearly penetration test only, in order to save on the cost implications.
Think of a security policy you may have encountered either at school or in the workplace....
Identify a manager/boss/supervisor you have encountered in your work life, and think about that person's management style. Do not provide any of this individual's personal information, including names. Keep that manager in mind as you provide your response to the discussion. If appropriate, include personal experience in your response: What personal characteristics made that manager effective or ineffective? If you could have told that manager two things that person could change to improve his or hermanagement style, what would they...
Have you seen lateral violence in nursing, either in school or in the workplace? What was it like? How can you effectively deal with it?
Think of a scenario you have encountered where you or your team were not being well managed in the workplace. Describe that scenario as background, and then discuss how you would specifically use the P-CMM and its Assessment Method to diagnosis and correct that management problem.
Is there a human–technology interface that you have encountered that you think needs improvement? If you were to design a replacement, which analysis techniques would you choose? Why?
Is there a human-technology interface that you have encountered and you think needs improving? If you were to design a replacement, which of the analysis techniques you read about would you choose? Why?
Is there a human-technology interface that you have encountered and you think needs improving? If you were to design a replacement, which of the analysis techniques you read about would you choose? Why?
Think about a conflict you have experienced either in the workplace or in a significant personal relationship. Describe the situation briefly and consider which response to conflict was demonstrated by either you OR the other person in the conflict. Include in your discussion the types of power you and the other person in the conflict may have been exhibiting. Answer the following questions using specific strategies from the reading. Failure to cite specific strategies will result in a loss of...
Think about a recent conversation (in the workplace, school, or home) where you had trouble communicating. What were your barriers to sharing the message and/or understanding the message? Discuss ways that you could have minimized the barriers?
Think about a time you have encountered a situation that required a crucial (or difficult) conversation. Discuss your personal feelings and/or thoughts related to dealing with a situation that required a crucial conversation. You are not required to discuss the specifics of the situation. If time and money were not an obstacle, describe one way you would improve communication, using technology. DREAM BIG! You can make improvements to current technology or invent something new! 150 words.
Think about potential transaction costs you may have recently encountered and discuss how commerce has changed over the past 30 years to reduce transaction costs.