assig 2 - Assignment 2 1. Because of limited human...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
Assignment 2 1. Because of limited human resources and financial, planning plays an important role in creating a better information security. information security planning divided in to two part 1_ organizational included in it are tactical planning, strategic planning, and operational planning. 2_ contingency planning included in it are incident response, disaster recovery and business continuity 9. CISO, is a lower position compare to CIO therefore, the planning it is more specific than CIO.the priority of the CISO and the information security management team focusing in structure of the strategic planning. 10. The different between the SecSDLC and general SDLC is the comprehensive structure. The general SDLC is a methodology to design and implement the information system, but the SecSDLC uses the SDLC to make a comprehensive security design and implementation information system 11. The primary objective of the SecSDLC is providing a comprehensive security design that meets the the response to a specific conditions – mentioned in the book as event-driven structure. Investigation: investigating the process, outcomes, goals of the project, and the budget in regard
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 2

assig 2 - Assignment 2 1. Because of limited human...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online