Ch 1 Intro to the Management of Information Security Exam Study Guide.
0 view 0 purchase
Course
Management of Information Security
Institution
Management Of Information Security
Ch 1 Intro to the Management of
Information Security Exam Study Guide.
Information Security Community - answerProtects the organization's information assets from
the many threats they face.
Information Technology Community - answerSupports the business objectives of the
organization by supplyi...
Ch 1 Intro to the Management of
Information Security Exam Study Guide.
Information Security Community - answer✔Protects the organization's information assets from
the many threats they face.
Information Technology Community - answer✔Supports the business objectives of the
organization by supplying and supporting IT that is appropriate to the organization's needs.
General Business Community - answer✔Articulates and communicates organizational policy and
objectives and allocates resources to the other groups.
Security - answer✔The quality or state of being secure - being free from danger. To be secure is
to be protected from the risk of loss, damage, or unwanted modification, or other hazards.
Physical Security - answer✔Protecting people, physical assets, and the workplace from various
threats, including fire, unauthorized access, and natural disasters.
Operations Security - answer✔Protecting the organization's ability to carry out its operational
activities without interruption or compromise.
Information Security (InfoSec) - answer✔The protection of information and its critical
characteristics (confidentiality, integrity, and availability), including the systems and hardware
that use, store, and transmit that information, through the application of policy, training and
awareness programs, and technology.
C.I.A Triangle - answer✔Industry standard for computer security. Characteristics are
confidentiality, integrity, and availability. The triangle has expanded to include privacy,
identification, authentication, authorization, and accountability.
Confidentiality - answer✔Characteristic of information whereby only those with sufficient
privileges and a demonstrated need may access it.
To protect the confidentiality of information, a number of measures are used, including: -
answer✔-Information classification
-Secure document (and data) storage
-Application of general security policies
-Education of information custodians and end users
-Cryptography (encryption)
Integrity - answer✔The quality or state of being whole, complete, and uncorrupted.
Availability - answer✔Occurs when users have access to information in a usable format, without
interference or obstruction.
Privacy - answer✔Information that is collected, used, and stored by an organization should be
used only for the purposes stated by the data owner at the time it was collected.
Identification - answer✔Characteristic of an information system that is able to recognize
individual users.
Authentication - answer✔Process by which a control establishes whether a user (or system) has
the identity it claims to have.
Authorization - answer✔Process that defines what the user (whether a person or computer) has
been specifically and explicitly authorized by the proper authority to do, such as access, modify,
or delete the contents of an information asset.
Occurs after the identity of a user has been authenticated.
Accountability - answer✔Occurs when a control provides assurance that every activity
undertaken can be attributed to a named person or automated process.
Ex. Audit logs
Management - answer✔The process of achieving objectives using a given set of resources.
Roles of Managers - answer✔1. Informational role: collecting, processing and using infomration
that can affect the completion of objectives
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Thebright. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.49. You're not tied to anything after your purchase.
