Module 2 Discussion (Solved)



Module 2 Discussion 


  1. Why is it important to treat security not as a "point in time" measurement? If you had to explain the important of investing in security in a long-term strategy to a CEO or CFO, how would you counter the "point in time" argument? 

  1. What would an effective security policy look like to you? Describe its key elements. Find a policy either from your organization or from UAB (UAB IT has a database full of policies) and choose one that you think best reflects what you believe would be effective. Don't forget to explain why you picked it! 

  1. Visit the ISO website ( (Links to an external site.)) to find out how ISO standards are developed. What did you learn? Why do you think security professionals continually review these standards when designing their own? 

  1. What does governance mean to you? Make sure you use plain language and include an example! 

  1. What does strategic alignment mean? How does it work from the perspective of business, IT, and Information Security? 

  1. Ideally, who is involved in designing and maintaining a secure organizational environment? Who are the key stakeholders? 


Related Questions in business category

The ready solutions purchased from Library are already used solutions. Please do not submit them directly as it may lead to plagiarism. Once paid, the solution file download link will be sent to your provided email. Please either use them for learning purpose or re-write them in your own language. In case if you haven't get the email, do let us know via chat support.