Question 1
Scenario: a new health care organization establishing their network environment and request a security policy proposal for the organization.
Deliverable: Prepare a well-written security policy proposal for your organization.
Make sure that your proposal includes the basic elements of a good security policy including:
- Introduction describing your organization and describing its mission, products/services, technical resources, and technical strategy
- Analysis of the organization’s relationships to its clients/customers, staff, management, and owners or other stakeholders
- A vulnerability assessment based on the technical resources.
- Your recommendation, including:
- Proposed remedial measures ( these include firewall/gateway provisions, authentication and authorization, encryption systems, intrusion detection, virus detection, incident reporting, education/training, etc.
- Proposed code of ethics or code of practice to be applied within the organization
- Legal/compliance requirements and description of how they will be met
- Proposed security policy statement/summary
Question 2
If you were part of a government entity, what would you say about the potential benefits and drawbacks of encryption? Be sure to cite examples from credible sources to support you answers. Write one page paper.