This question has been answered
Question

21836912-483030.jpeg

Regional Bank has been growing rapidly. In the past two years, it has acquired six smaller financial institutions. The long-term strategic plan is for the bank to keep growing and to "go public" within the next three to five years. FDIC regulators have told management that they will not approve any additional acquisitions until the bank strengthens its information security program. The regulators commented that Regional Bank's information security policy is confusing, lacking in structure, and filled with discrepancies.

Image transcriptions

Bank's information security policy is confusing, lacking in structure, and filled with discrepancies. You have been tasked with "fixing" the problems with the policy document. 1. Consider the following questions: Where do you begin this project? Would you use any material from the original document? What other materials should you request? Would you want to interview the author of the original policy? Who else would you interview? Should the bank work toward ISO certification? Which ISO 27002:2013 domains and sections would you include? What other criteria should you consider? 2. Create a project plan of how you would approach this project.

This question was created from isp book

Answered by Expert Tutors
Step-by-step explanation
1 Attachment
ghrt.png
png
The student who asked this found it Helpful
Overall rating 100%

"Thanks for your effort"

Bank's information security policy is confusing, lacking in structure, and filled with discrepancies. You have been tasked with 'fixing' the problems...
Get unstuck

261,329 students got unstuck by Course
Hero in the last week

step by step solutions

Our Expert Tutors provide step by step solutions to help you excel in your courses