• what is the goal of information security? 
  • what are the sources of threats? 
    • unauthorized data disclosure 
  • what types of security loss exists 
    • unauthorized data disclosure 
    • pretexting 
    • phishing 
    • spoofing 
      • IP spoofing 
      • Email Spoofing 
    • Drive by sniffer 
    • hacking 
    • natural disasters 
  • how big is the computer security problem 
  • ponemon 2012 studies summary 
    • median cost of computer crime increasing 
    • malicious insiders increasingly serious security threat 
    • data loss 
  • how should you respond to security threats 
    • take security seriously 
    • create strong passwords 
    • use multiple passwords 
    • send no valuable data via email or IM 
    • use https at trusted, reputable vendors 
    • remove high-value assets from computers 
    • clear browsing history, temporary files, and cookies 
    • regularly update antivirus software 
    • demonstrate security concern to your fellow workers 
    • follow organizational security directives and guidlines 
  • how can organizations respond to threats 
    • technical safeguards
    • data safeguards 
    • human safeguards 
  • how should organizations respond to security incidents 
    • have a plan in place 
    • centralized reporting 
    • specific responses
      • speed 
      • preparation pays 
      • dont make problem worse 
      • practice 
      •   

Comments

Post a Comment

Popular posts from this blog

Image
Cloud Computer - The Elastic leasing of pooled computer resources over the internet Elastic because it can flex Computer resources cause you Pooled -Virtualization Virtualization - process by which one computer hosts the appearance of many computers. Operates as if installed on one’s own computer Leasing - don’t own the program, you own a license/right to use the program Over the internet SaaS Software as a service, you don’t install these yet they’re considered software PaaS (platform as a service; for big project managers and creators/developer IaaS Infrastructure as a service, Most commonly used Virtual Private Network(VPN) Lots of question on it How do Organizations use Cloud Services Securely? VPN client software that encodes messages Click on the software, input the key, then it creates a tunnel. Whenever you need to send something, that VPN encrypts your message, making readable data unreadable. Once it ge...
Read more
Image
How Do CRM, ERP, and EAI Support Enterprise Systems Help organizations rethink how they do work. Inherent processes Prebuilt procedures based upon “industry best practices.” Save money and time in business process reengineering. Eliminate costs of developing complex applications in-house. Customer Relationship Management Suite of applications, a database, set of inherent processes Could adopt as a stand alone system, or one of the modules within an ERP package. But the CRM system only affects the Customer Service Department, nothing else. Manage all interactions with customer through four phases of customer life cycle: –Marketing, Customer Acquisition, Relationship Management, Loss/Churn Every contact and transaction with customer is recorded in CRM database Solicitation and Lead management Application Sales Applications Relationship management applications Customer Support Applications ERP Everything above and Huma...
Read more

database

what is the purpose of a database organize and keep track of things table = file columns = field records = rows components of database tables or files and relationship among rows in tables and metadata = database field = primary key in one table and secondary key in another table what is database management system ( dbms) program used to create, process, and administer a database licensed from vendors such as IBM, Microsoft, oracle and others DB2 from IBM, access and SQL sever from Microsoft, oracle database from oracle corporation MySQL - open source, license- free for applications 3 types of database models relational data base student file student CIN last name middle initial and first name major address street city state zip code faculty file CIN last name middle initial first name department city state zip schedule of class class number class name section date time instructor object oriented database name of object = l...
Read more